EDITOR ’ S question
HOW CAN BUSINESSES EFFECTIVELY NAVIGATE
CYBER-RISK THROUGH THE IMPLEMENTATION OF ROBUST
SECURITY POLICIES ?
According to Barracuda Network ’ s recent report , one-in-10 businesses don ’ t have an incident response plan . We hear from industry experts Alex Coburn , CEO of ThreeTwoFour , a Node4 company ; Simon Howe , Area Vice President for Australia and New Zealand , ExtraHop ; and Andre Cilurzo , Managing Director , Protiviti , about their thoughts on navigating cyber-risks through security policies .
arracuda Networks , a trusted partner
B and leading provider of cloudfirst security solutions , recently published a CIO report , Leading your business through cyber risk , which explores the top governance challenges facing companies trying to manage cyber-risk and boost their cyber-resilience .
Leveraging data from the international Cybernomics 101 study , the report assesses how challenges relating to security policies , management support , third-party access and supply chains can undermine a company ’ s ability to withstand and respond to cyberattacks .
Among other things , the findings show that many organisations find it hard to implement companywide security policies such as authentication measures and access controls . Half ( 49 %) of the smaller to mid-sized companies surveyed listed this as one of their top two governance challenges .
Further , just over a third ( 35 %) of the smaller companies worry that senior management don ’ t see cyberattacks as a significant risk , while the larger companies are most likely to struggle with a lack of budget ( 38 %) and skilled professionals ( 35 %).
Many organisations have concerns about a lack of security and control over the supply chain and visibility into third parties with access to sensitive or confidential data . Around one-in-10 don ’ t have an incident response plan to turn to in the event of a successful breach .
“ For many businesses today , a security incident of some kind is almost inevitable ,” said Siroui Mushegian , CIO , Barracuda Networks . “ What matters is how you prepare for , withstand , respond to and recover from the incident . This is cyberresilience . Advanced , defence-in-depth security solutions will take you most of the way there , but success also depends on security governance – the policies and programmes , leadership and more that enable you to manage risk . When NIST updated its benchmark cybersecurity framework earlier this year , it added security governance as a strategic priority .”
WWW . INTELLIGENTCISO . COM 27