15 April 2016
Cyber Security: How Can We Turn the Corner?
By Cliff Moyce
Cliff Moyce, Global Head of Financial Services Practice at DataArt, contributes an article to Dell’s Tech Page One where he discusses cyber security as an essential backbone of customer trust, vital for the businesses’ very existence. Moyce points what can be learned from the famous data breaches, and emphasizes the importance of a multi-level approach to security, where education and culture change play the central part.
“One important step for organisations wanting to reduce cyber-security risk will be to disavow themselves of the common misconception that data losses are usually the result of technology weaknesses, vulnerabilities and failures. In fact, it is human failings that are far and away the most common causal factor in what is usually reported by the press as ‘hacking’.
Developing security policies to mitigate the people risk in cyber security is no longer enough. In fact it was never enough. Such policies risk being treated as a tick box exercise, or are created with good intent but are undermined by a culture of poor practice. Education and training in security policies is essential – but even that approach can fail if the necessary culture change does not happen.
This is where the most important change needs to happen in 2016 to avoid repeating the mistakes of 2014 and 2015.
All employees need to be trained and examined on cyber and data-security on best practice. One important area that is often overlooked is the risk of individuals falling victim to social engineering outside of work and that compromised status manifesting in their workplace. It is vital that all staff understand how email attachments, phishing, and impersonations can be used to install malware devices to personal devices or work computers that can then obtain login credentials to a corporate network.”