Jonathan Wood, pictured, CEO of C2, covers four common mistakes that organisations need to overcome.
In a recent cyber report by The Department for Digital, Culture, Media & Sport (DCMS), 39 per cent of UK businesses said they had identified a cybersecurity attack in the past year. Headlines of this nature immediately peak my interest, with the trigger word being ‘identified’. For a cyber threat to be described as ‘identified’, it must be effectively discovered by an organisation. What this data does not show is the percentage of unidentified cyber threats, which, in my opinion, will be significantly greater than this figure. For example, cyber criminals will often conduct an initial breach of a company’s infrastructure, lying in wait to unleash their attack when the best opportunity emerges. As such, these organisations could be unknowingly vulnerable to an attack at any moment even if the threat has not yet been identified.
Familiar oversights
I have seen for myself that businesses of all sizes, across all industries, often have the best intentions when it comes to putting in place measures that protect themselves against cyber threats. And yet, they all seem to fall at the same common hurdles. From hurrying to digitalise too fast to failing to define who is responsible and accountable for enhancing security defences – these mistakes need addressing to best protect businesses from hackers and cyber-criminals. So, what’s going wrong? Here are four common cybersecurity mistakes that organisations need to overcome:
1. Undefined responsibility and accountability
This is particularly prevalent if an organisation is multidisciplinary – for example, those comprised of departments focused on manufacturing, customer service, distribution and so on. It is important to assign responsibility to a team or person, especially in larger corporations where the Board will not be dire ..
Support the originator by clicking the read the rest link below.
