It is clear that as cyber security controls strengthen, and teams focus on their respective “postures,” security principles will begin to be ingrained in the wider business model. In fact, they have to.
Yet reaching that mark seems like a climb. So, how has strategic communication around information security fared of late? Today, we investigate.
As we’ve mentioned here at the Cyber Security Hub, communicating cyber principles both “upward” and “outward” is now a critical business function. This comes as municipal (and large city) governments combat ransomware, malware strains propagate and hackers automate their intended attacks. The assumption is that now, a breach can/will occur (versus denying the inevitable). But does the board know crucial figures on cyber posture? Does the employee base know about CISO efforts to combat phishing and limit privileges where necessary?
Various enterprises are taking strides at the latter, but there is a long way to go. Privileged accounts and sophisticated phishing scams remain top concerns for today’s enterprise, be it small/midsize (SMB), or large. Time- and resource-constrained CISOs must…
