Cyber Security Qualifications
Despite increased media coverage of high-profile data security breaches, many top executives still believe their organisation has no valuable data and will not be targeted. However, if you ask anyone who is involved in fighting cyber crime on a daily basis they will say that no organisation is immune.
Cyber crime costs the global economy over £300 billion a year and is an issue that businesses cannot afford to ignore. Organisations are suffering both direct and indirect losses, with downtime and lost productivity being the most common issues.
In reality, every business which is connected to the internet can expect to be targeted by cyber criminals. One of the main problems is that while most information security professionals are aware of the threat cyber crime poses to the business, senior executives are often unaware of the scale of the problem.
What matters, then, is intelligence – trying to gain an insight as to when and where attacks are likely to hit. Being prepared is also vital so that organisations have the ability to rapidly deal with an attack.
There has been a lack of cyber security training in the past aimed at raising staff awareness and skills. The forthcoming European legislating, The General Data Protection Regulation (GDPR) that will impose fines of up to £20 Million or 4% of turnover upon organisations that suffer a cyber-attack compromising confidential client data now is the time to act!
What do business need to be aware of?
- Employees are the main target of cyber crime due to threats from phishing and social engineering
- It is essential for employees to receive security awareness training
- Credential theft and abuse is a tactic widely used by cyber criminals
- Cyber criminals target organisations which rent out computing resources
- Extortion – where cyber criminals hold data to ransom – is becoming increasingly common
- Distributed denial-of-service (DDoS) attacks or threats of DDoS attacks are being used to blackmail businesses
- Cyber criminals masquerade as company officials in order to divert payments
- Cyber criminals are tricking organisations into sending them payments using email notifications
- Blended attacks (a combination of attacks against different vulnerabilities) are becoming increasingly common using any and all types of cyber crime
- Having good data governance policies and processes are key to limiting any harm caused by a breach of security
- Keeping all business software up to date is essential to ensure criminals have fewer weaknesses to exploit
- Collaboration across industry and with law enforcement is vital to fighting cyber crime
Whilst training and qualifying staff across the organisation about the cyber risks and threats is clearly vitally important does the organisation have the right skills in place to provide the data analysis to keep decision makers appropriately informed?
For further information and possible solutions go to our Analysis page.