Building Human Defenses: How to Reduce Cyberattack Risk Through Culture, Training and Crisis Readiness
Cyber risk continues to rise and, according to the World Economic Forum, around 95% of all successful cyberattacks can be traced back to human error. For organizations, this raises questions on how to reduce cyberattack risk. In this video Michael Andersen, a Data Hostage Negotiator and guest speaker at a recent IMAP conference, shares advice on how to protect your company.
Three Leadership Priorities to Reduce Cyberattack Risk and Strengthen Cybersecurity Preparedness
According to Michael, there are three key areas leaders should focus on if they want to reduce the likelihood of being successfully attacked and improve cyberattack risk management. Together, they help turn cybersecurity from a technical issue into an organizational capability and strengthen cybersecurity preparedness for companies:
1. Make awareness training behavior-focused
First, organizations need to invest in awareness training. This should not be a tick-box exercise for compliance, but employee cybersecurity awareness training that genuinely shifts the everyday behavior of employees.
2. Practice cyber crisis management annually
Second, companies should conduct at least one cyber crisis management exercise every year. This ensures that the management or crisis team knows how to act when an incident occurs and can respond quickly and coherently, supporting cybersecurity governance and accountability and overall cybersecurity strategy for businesses.
3. Build an open culture around cyber incidents
Third, it is essential to build a culture where cyber issues are not taboo. Every cyber crisis should be approached with openness, so people feel safe reporting problems and learning from them, strengthening cybersecurity culture in companies and contributing to business resilience.
The Stakes: Money and Reputation
If organizations work consistently on these three areas and maintain strong cyber hygiene and IT prevention measures, they will be far better prepared for the future. The cost of a successful attack can be extremely high, not only in financial terms but also in lost reputation and other long-term consequences, especially when poor cybersecurity hygiene is exploited.
Watch the video HERE.
And why not take a look at our recent article looking at M&A acvitiy in the Cybersecurity market.
Key contacts
More articles
Poradce je Vaším kompasem.
Obraťte se na nás pro nezávaznou konzultaci se specialistou na fúze a akvizice, který si pozorně vyslechne Vaše potřeby a upřímně a nezaujatě posoudí nejlepší možné řešení.