We can get cyber security right 99% of the time, but attackers only need to exploit the 1% in order to do tremendous damage to our business, says Dimension Data.
With cyberattacks featuring regularly in mainstream news, it’s good to see that boards and CEOs are becoming more cybersecurity conscious.
However, the question is, how prepared are CISOs to deal with their questions and concerns, and what are they key things CISOs need them to understand about cyber security?
Sean Duffy, Digital Business Solutions Security Practice lead at Dimension Data, poses 10 questions that CISOs should be able answer:
1. What is the current level of cyber risk?
Additional things to consider: What are the threats, risks and vulnerabilities to a business? How well as it positioned to address them under the current cybersecurity posture?
2. How much of the cyber risk is internal versus external?
Additional things to consider: Does the organisation have to worry about insider threats (malicious or not)? Is it further exposed or at risk by partners, suppliers and vendors?
3. How well is the organisation positioned to deal with cyber attacks and risks?
Additional things to consider: Does the…
