Header Ads Widget

Why the pandemic has changed our cyber security values

Why the pandemic has changed our cyber security values

Why the pandemic has changed our cyber security values

What is certainly true, however, is that we seek to regain stability in many aspects of the business world, from job retention to turnover. We are trying to understand better to better prepare for the future. That stability comes from security professionals, those whose job it is to protect an organization’s data and technology assets and keep them functional for all employees. The internet is inundated with discussions about the biggest cybersecurity threats of 2020, the fastest routes to resilience, the cost of compliance sanctions, data breaches, and the vital importance of guaranteeing that interests in computerized change don't. are not blocked. What is less clear is how we might create lasting cultural value to maintain security, and the human factor of these practical measures. What are the elements that influence this new safety culture?

Phishing phase

When things don't make sense, we are inclined to seek information to help them get more. Employees, who now work remotely, are very tempted to visit and subscribe to new or unreliable sources of information. Phishing is one of the cheapest and most effective methods of achieving large-scale goals. So it's no surprise that this is one of the leading causes of data breaches. However, hackers improve their game with a myriad of advanced techniques. Phishing professionals target many professional SaaS applications and continue to use personal information shared on many social networking sites to create increasingly authentic interpersonal messages.

"Therefore, these assaults are progressively hard to recognize, in any event, for the most modern clients." Staff awareness is essential, not only through communication but also through practical demonstrations of fraud and the setting up of simple and effective warning systems.

Leave the backdoor open

With most employees at home, security teams try to best equip them to ensure their own security from a distance. This means people are more likely to make mistakes, pass data to untrusted sources, fail to follow update protocols, and accumulate unpatched vulnerabilities.

Poorly configured cloud servers, multi-core environments, and insecure APIs all leave systems vulnerable to hackers. Additionally, employees are more likely to download insecure SaaS tools without IT approval. It's no surprise that more than one in five businesses experience a cyber incident from an unauthorized IT resource.

As the culture of safety evolves, safety must become everyone's responsibility, which requires a shift in mindset so that we do not bring vulnerabilities into our homes, let alone the office.

Change role

Research published earlier in the pandemic indicated that 47% of security teams have been reassigned to general IT tasks and 90% are working remotely full time. This is of course of concern as these teams are inevitably overwhelmed with responsibilities and the threat of attack could be heightened. However, this could be a positive thing, helping to evangelize cybersecurity through broader IT thinking, especially as investments like DevSecOps continue to break down idea silos.

The ability to deploy the right security specialists where they are needed, while overseeing their integration into the rest of the IT team, will be an asset to emerge from the pandemic. Prioritizing the workplaces of these professionals could also automate some tasks in the long run.

Talent gap in cyber skills

We don't want to end up with a talent shortage, which is already a growing problem in the industry. The growing lack of cyber skills has caused organizations to lack the right talent to provide the security functions needed to stay secure - and this worries many CISOs.

Lack of technical knowledge and experience is one of the most cited reasons for this lack of cyber security consultant talent. An unsuitable corporate culture is also a major obstacle. Within the CISO community, the consensus is clear enough that this problem will get worse, especially over the next five years, but - like many changes happening now - this may have been accelerated by the recent crisis.

So now is not the time to lose sight of these key roles, but rather to use their reassignment to reinforce and help deploy the idea that safety is a core business value.

The future CISO

The CISO must extend its role throughout the chain of command - both for decision-making with management and for operations in the field. By adopting a top-down management, CISOs are firmly anchored in the decision-making board and it is often up to them to bridge the gap between the areas in which they know they need to protect their companies and those in which their peers feel they need to. you have to invest.

To manage the entire workforce and run a 24/7 operation, you need to be able to identify a security incident among a multitude of false positives and low priority alerts. . Going forward, CISOs will face an even more flexible workforce, which will require them to be more agile than ever in the face of threats.

Despite the difficulties and challenges faced by our businesses in recent months, it has become clear that security cannot be relegated to the background. Now is the time for our cybersecurity teams to help us ensure that security, stability and dependability - in both practical and human senses - are placed at the heart of the company's shared values.

Post a Comment


  1. Getting take my online class for me offer instant & 24*7online by professional assignment writers at affordable price and plagiarism free.