What’s the latest on the cyberthreat horizon?
From massive data breaches affecting millions of consumers to ransomware attacks that shut down fuel deliveries, knock power plants offline, and disrupt global shipping, it’s clear that cyberattacks are becoming more and more capable of causing vast destruction and inflicting huge financial and reputational costs.
NINJIO’s own COO and CISO, Matt Lindley, recently sat down with SourceForge to discuss this topic, plus share his take on the state of cybersecurity education, the shifting threat landscape, and how companies can create a culture of cybersecurity.
Here are some of the key takeaways:
-
Some of the most significant threats CISOs face today. Companies are struggling to keep pace with increasingly sophisticated cyberattacks. For example, cybercriminals are now capable of infiltrating victims’ devices, scanning their documents for relevant words or phrases, and tampering with those documents. This means it’s possible for a responsible employee to still send a file to a fraudulent third party—an alarming reminder that SAT programs have to keep employees educated on the latest cyberthreats.
What it means to establish a culture of cybersecurity. Cybersecurity should be an essential part of employees’ daily habits. They should use password managers and VPNs, examine all digital communications for malware, confirm the recipients of sensitive information, refrain from exposing proprietary information online, and so on. When cybersecurity becomes second nature for all employees, you can say that you have a culture of cybersecurity.
One of the most common misconceptions about cybersecurity. It’s thinking that cybersecurity is someone else’s problem: the IT team, the CISO, the CTO, etc. In reality, every role at your company has become digitized and therefore vulnerable to cyber threats, from sales to customer service to product development. It simply isn’t possible to have a secure organization without participation from every employee, manager, and department.
Policies companies can adopt to create a culture of cybersecurity. Cybersecurity education helps companies defend themselves from the bottom up by giving employees the knowledge and skills to neutralize threats. There are also top-down policies that can help, such as rewarding employees for proactively reporting incidents, even when they may have made a mistake (for example, clicking on a corrupt link).
Have a few more minutes? Read the full piece over on the SourceForge website here.
