Cybersecurity: strengthen your enterprise, don’t vaporise.
On September 22nd, we discussed how the cybersecurity landscape has evolved since the start of the COVID-19 pandemic.
Based on the new treats that Businesses now face, we made recommendations for how our customers can identify and protect their assets.
Rob Knoblauch, VP, Global Security Services & Deputy CISO at Scotiabank and Steve Thompson, Director Cybersecurity Awareness, Training and Communications explored the steps our customers should take to mitigate harm to their business operation and discussed what should be done now to build their defenses.
About the speakers.
Identify and protect your assets.
The CIA Triad is a well-known model for the development of security policies used in identifying problem areas, along with necessary solutions in the arena of information security.
Confidentiality: Prevent sensitive information from reaching the wrong people while ensuring only authorized people can access it.
Integrity: maintain the consistency, accuracy, and trustworthiness of data. Steps must be taken to ensure that data cannot be altered by unauthorized people.
Availability: ensure that your data and systems are always available when you need them to be.
Protect your business.
Adopt a cybersecurity framework. We recommend the National Institute of Standards and Technology (NIST) cybersecurity framework.
Create cybersecurity policies and breach procedures. Focus on the recovery of your assets and make sure they are enforceable.
Know your regulators
Make sure you know your regulators for all the jurisdictions in which you operate. Often there are time requirements to report any cybersecurity breaches.
If a cyber breach occurs, running simulations will ensure that all senior staff know their role to play and will help ensure a quicker recovery.
Your staff is the weakest link. Keep them informed of threats and how to spot them through a vigorous awareness program.