Rethinking the organisational cyber security approach

Posted on 26/07/2019 by charlene
DISCLAIMER: this article is older than one year and may not be up to date with recent events or newly available information.

Our recent World Wide Worx survey, conducted in partnership with Trend Micro, has shown that local CIOs are not leading the company response when it comes to dealing with data breaches. This indicates a clear disconnect between C-suite and IT strategies that must be addressed if companies are to ensure data remains safe at a time where it has become a prime target for malicious users.

Fortunately, decision-makers are aware of the risks out there. They understand that it is not a case of if they will be attacked, but rather when this will happen. More than a third of respondents expect the next cyber attack to hit them within a few days while more than half anticipates this to occur within the next year.

Given these grim findings, one would expect that shoring up defences would be a strategic priority. Yet, the two main focal points when it comes to corporate initiatives were acquiring new customers and growing existing customer revenues. Protecting against cyber attacks came in a distance fifth. Yes, difficult economic times mean companies must do everything in their power to ensure growth, but this investment will be futile if they cannot protect the data of their customers.

This is especially relevant when one takes into consideration the financial and reputation impact of data breaches in a highly regulated market. The fines associated with not taking adequate measures to protect customer data can be astronomical. And when those customers find out that there has been a breach and not enough was done to safeguard their information, the loss of trust can be even more significant resulting in people flocking to competitors.

Respondents confidently state they can protect the company in the event of an attack. In fact, 99% of people surveyed said they have the capacity to do so. Sadly, this assuredness comes tumbling down when asked if the skills to do so are there – a whopping 45% agree that they do not have the capabilities to keep the business safe.

This lack of skills is especially concerning given the important role data protection plays in the connected world. Companies must do more to ensure that employees are not only educated about cyber security risks, but social engineering as well. And while this education will not address the significant skills gap that currently exists, it is a step in the right direction.

Furthermore, decision-makers must also look beyond the human element and must more closely examine their security software and systems. The survey found that almost 93% of respondents had outdated solutions in place. This could be attributed at least partly to a lack of integration between the CIO and the IT department.

Going forward, a more integrated cyber security approach is required that encompasses the solutions, the infrastructure on which they are used, and education on the threat landscape. It is about focusing on applications and building in an intrinsic level of protection that links the hardware with the software.

The State Of Enterprise Security In South Africa

Download Now


Category: News

Tags: , , , ,

Related Articles

Posted on 15/05/2020 by charlene

Leaders in a time of change – CIOs and digital transformation

Digitalisation is demanding that every organisation transforms in ways not thought possible even a few years ago. In particular, enterprises are being forced to change their approach to, and application of, technology and the role of IT in implementing that tech. Santiago Franco, Global CIO at travel technology firm Amadeus argues, “In the past it’s […]

Posted on 15/05/2020 by charlene

Re-evaluating the importance of the network for IT and security

The power to drive the effective change required for the digital world is still underestimated by IT and security teams even though the network has become an invaluable strategic asset integral to any modern security, cloud, and app strategy. According to the Forrester Network Security Research 2020 report, there is still significant disparity between IT […]

Posted on 17/04/2020 by charlene

Don’t break the bank – Cyber Security, banking and breaches

Matthew O’Neill, Financial Services Industry Managing Director, Office of the CTO, VMware It doesn’t matter what bank or financial institution they work for, there’s one thing that I guarantee keeps all CIOs awake at night – Cyber Security. To be fair, security in the digital era is probably the number one topic across all sectors. […]

Comments

No comments yet

Add a comment

Your email address will not be published.

© 2020 VMware EMEA Blog
© 2020 VMware EMEA Blog
This site uses cookies to improve the user experience. By using this site you agree to the privacy policy