Intelligent CISO Issue 15 | Page 52

COVER STORY We are conducting cybersecurity awareness meetings, presentations and also ensuring employees undergo regular cybersecurity training to understand and manage cyber-risks. There are also technical standards we need to comply with. We lead and conduct cybersecurity multi-year programmes. To manage it efficiently the respective stakeholders and departments are involved, making sure the full supply chain is covered from the project initiation until the project goes live, during the maintenance phase etc. This is what I feel we should be proud about. We have created a process for cybersecurity in a way that works together with all the business areas and ensures all cybersecurity business requirements are kept. 52 How important is training and education? Each and every year we are conducting cybersecurity awareness programmes. We have a full week of cybersecurity awareness for everybody in the organisation and my team are conducting training to make sure the message goes through. We also have a calendar for cybersecurity awareness especially focusing on a certain area and offer advice on that. Every new employee has an induction day and cybersecurity is included in that. So, if somebody is joining the team, he or she will not just get the standard package but cybersecurity is built in very early on. It is important to keep our colleagues’ engagement high; this year we are going to organise a new cybersecurity event as a new element within our awareness portfolio. Where do you source new employees? It depends on the role but usually we start with the university. In Budapest we have a very good collaboration with multiple universities and they are growing talented people who come over for internships and then don’t want to leave, which is a good sign. At the same time, we are also attracting people from further afield, from close countries like Slovakia and Croatia, and from the wider region like Portugal, Spain, Italy and other places. We even have employees from Mexico. Issue 15 | www.intelligentciso.com