COVER STORY
We are conducting cybersecurity
awareness meetings, presentations
and also ensuring employees undergo
regular cybersecurity training to
understand and manage cyber-risks.
There are also technical standards
we need to comply with. We lead
and conduct cybersecurity multi-year
programmes. To manage it efficiently
the respective stakeholders and
departments are involved, making sure
the full supply chain is covered from the
project initiation until the project goes
live, during the maintenance phase etc.
This is what I feel we should be proud
about. We have created a process
for cybersecurity in a way that works
together with all the business areas
and ensures all cybersecurity business
requirements are kept.
52
How important is training
and education?
Each and every year we are
conducting cybersecurity awareness
programmes. We have a full week of
cybersecurity awareness for everybody
in the organisation and my team are
conducting training to make sure the
message goes through.
We also have a calendar for
cybersecurity awareness especially
focusing on a certain area and offer
advice on that.
Every new employee has an induction
day and cybersecurity is included in
that. So, if somebody is joining the team,
he or she will not just get the standard
package but cybersecurity is built in
very early on.
It is important to keep our colleagues’
engagement high; this year we are
going to organise a new cybersecurity
event as a new element within our
awareness portfolio.
Where do you source
new employees?
It depends on the role but usually we
start with the university. In Budapest
we have a very good collaboration
with multiple universities and they are
growing talented people who come over
for internships and then don’t want to
leave, which is a good sign. At the same
time, we are also attracting people from
further afield, from close countries like
Slovakia and Croatia, and from the wider
region like Portugal, Spain, Italy and
other places. We even have employees
from Mexico.
Issue 15
|
www.intelligentciso.com