cyber security and human risk culture

Societal relevance of cyber security and human risk culture

Cyber security is moving from having purely technical relevance to increasingly societal relevance, affecting the way we live our lives and honour our obligations. Business leaders must respond by engaging cyber security specialists who understand psychology, sociology and criminology aspects, but also know how to leverage technological innovation, that can scale to meet the challenges …

Societal relevance of cyber security and human risk culture Read More »

Enhancing Board Oversight of Cyber Risk

The role of corporate directors in cyber risk oversight has been cast into spotlight  by a succession of high profile cyber risk events, including recent hacker incursions at Equifax, Uber, Facebook, Google and several other well-regarded corporations. Regulators are also tightening the squeeze, seeking positive affirmation from boards that their cyber risk governance structures are …

Enhancing Board Oversight of Cyber Risk Read More »

security monitoring program

Key considerations for establishing a security monitoring program

The old narrative that you focus on deterrent cyber controls doesn’t make sense any more. Most enterprises now concede that if a capable threat actor targets them, it will likely get in. This realisation has forced a change in narrative, from cyber security to cyber resilience. Forward leaning enterprises are taking a balanced approach, investing in …

Key considerations for establishing a security monitoring program Read More »

Cyber security transformation

Cyber security transformation requires the right tone at the top

Every sustainable business transformation is underpinned by strong executive support, and cyber security is no different. Long-term shifts in staff mindsets and behaviors require senior business executives to role model expected attitudes, beliefs, and practices – a concept commonly referred to in risk-management circles as ‘tone at the top’. The underlying premise is that whatever …

Cyber security transformation requires the right tone at the top Read More »

The ransomware puzzle – To pay or not to pay?

The explosion of debilitating ransomware attacks raising the enduring tension between morality and business reality. Several business leaders are often finding themselves stuck in difficult position, asking the vexing question – should we pay up the hackers in the hope of recovering our files, or should we stick to our principles, even if it means closing …

The ransomware puzzle – To pay or not to pay? Read More »