Effective cyber risk mitigation requires a ‘top-down’ management approach – CSO

0
102

With almost daily reports of cyberattacks, intrusions and data breaches, many organisations are unclear what approach to take to ensure their own security. Some view the challenge as an issue for the IT department while others look to senior management and the board for answers.

The confusion that exists around who is responsible stems from the fact that many organisations have a somewhat historic view of how risk should be managed – one formulated in an era before information technology became ingrained in daily business life. The game has now changed but, in many cases, business thinking has not.

Understanding the challenge

Cyber risks are shifting from being something that is rare to something that is, unfortunately, common. At the same time, the threat landscape itself is evolving much more quickly than many people realise.

For many organisations, the challenge is exacerbated because some of the IT systems in use were deployed years ago. They might be monitoring ageing equipment or managing core infrastructure and could easily be missed when measuring the extent of the cyber risk being faced.

Read More…