Cybersecurity and your business: key points » SMEInsider

Cybersecurity and your business: key points

Cybersecurity is a key issue for businesses and charities alike, as they grapple to secure their networks, devices and data.

Take a look at these eight key points surrounding cybersecurity to make sure your organisation is prepared if you ever experience a security breach.

  1. Organisations must shake the “it won’t happen to us” mentality.
  2. No organisation is too small to face a cybersecurity attack. Although bigger companies tend to be more vulnerable than smaller ones as there is so much more at stake, experts predict that there will be a growth in attacks on smaller companies in 2014.
  3. Prepare for the worst. Invest in cyber security, thinking of the absolute worst case scenario.
  4. You’re not just responsible for your own network. We are part of a connected world. If a hacker gets into your system, there will be repercussions for others too, such as your partners and customers.
  5.  Lack of education is a problem, especially in larger organisations. Richard Anderson, chairman of the Institute of Risk Management, says:  “There are still a lot of people sitting astride larger companies who still regard it as something the geeks look after, rather than it being a business issue.” Often cybersecurity is lumped off as something for the IT department.
  6.  Cybersecurity isn’t just about the right technology. It’s also about culture and education. The way security rules are explained to employees is also extremely important. Explain the risks to people, rather than telling them what the can and can’t do.
  7.  Consumers play a significant role. Gauging how harmful a security breach is for a company often depends on the response of the people.
  8.  If there is a breach, communicate! Organisations affected by a security breach must resist the urge to stay silent, even if they haven’t finished investigating. Be transparent with your customers and rebuild their trust. Richard Horne, partner at PricewaterhouseCoopers said: “A cyber event is actually no different from any other type of crisis management. Once it gets to a crisis, there’s some technical stuff that someone needs to deal with, but it’s about managing your reputation, managing confidence in your brand, and managing the impact on your customers.”