The COVID-19 pandemic and the resulting rapid adoption of remote working arrangements and technologies present new and increased cybersecurity risks for organizations of all kinds and sizes. Organizations should consider and implement, as appropriate, recently issued authoritative guidance (see Appendix) to help manage COVID-19-related cybersecurity risks. In addition, when circumstances permit, organizations should seize the opportunity presented by the pandemic to improve their general cybersecurity maturity.
COVID-19 cyber risks
Cybersecurity refers to an organization’s use of various kinds of controls (based on people, processes and technologies) to manage risks of losses, costs and liabilities suffered or incurred as a result of a failure or breach of the information technology systems used by or on behalf of the organization, or other incidents that compromise the confidentiality, availability and integrity of data in the organization’s possession or control. Managing cyber risks is important not only for compelling business reasons but also for compliance with various legal obligations (including obligations to protect personal information) and to avoid potentially…
