Preparing for the threat of digital disruption
As the world becomes more and more digital, so do the threats that it faces. Just as we need to protect our organizations from the disruptions that occur in the physical world, we also need to have plans in place to deal with disruptions in the virtual world.
Large organizations like eBay, Target and Sony have all suffer the consequence of a data breach. We have seen an increase in the magnitude of DDoS attacks like the one that brought down the BBC's website just over a year ago. We are experiencing an increase in the occurrence of ransomware attacks on all sizes of organizations including hospitals and local authorities. No longer can we think "it will never happen to me."
As the Business Continuity Institute's latest Cyber Resilience Report showed, two-thirds of organizations had experienced at least one cyber security incident during the previous twelve months, and 15% had experienced at least ten. Given the prevalence of the threat, it perhaps no surprise that the BCI's Horizon Scan Report noted that, of all the possible causes of disruption, cyber attacks and data breaches were the top two concerns for business continuity and resilience professionals.
It is therefore extremely fitting that cyber security was chosen to be the theme for Business Continuity Awareness Week, an annual campaign organized by the BCI to raise the profile of the industry and highlight the need for organizations of all shapes and sizes to have a robust and effective business continuity programme in place, making them more likely to have the capability to withstand any disruption.
So what can be done to improve cyber security within our organizations, and indeed in our own personal lives. They always say that prevention is better than cure so the first step is to try and prevent incidents occurring in the first place. Clearly this could be seen as the role of the IT department by ensuring there are effective firewalls in place and up to date anti-virus software on all our devices. But there have been many studies that show that security breaches are often the result of human error. This may not necessarily be down to malicious activity, or even negligence, sometimes it could just be down to a simple mistake. As part of the campaign, the BCI, through a series of six posters, has highlighted six simple steps that each and every one of us can take to help improve cyber security.
- Use strong passwords
- Keep passwords safe
- Lock your computer
- Don’t plug in untrusted USB sticks
- Don’t click on untrusted links
- Be cautious when using public wifi
These all may seem obvious and unnecessary to even mention them, but the report to be published during BCAW reveals the risks that our organizations face because people aren't taking these actions, and very often display a somewhat relaxed attitude to cyber security. The posters are all free to download so if you want to be part of this campaign then just choose the poster(s) and size(s) that suits and display it proudly in your office.
During BCAW, the BCI will be hosting a series of free webinars that are all linked to the theme of cyber security, some focussing on the preventative measures that can be put in place to try and stop an incident happening in the first place, while others will look at the responsive actions that should be taken in the likely event that one occurs. All the webinars can be watched live, but will also be recorded so can be watched on demand at a time of your choosing. Find the full programme of webinars by clicking here.
The BCI will also be collating a wide range of resources, from news article and blogs, to research reports and case studies, so if you would like to find out more about the campaign then visit the website at www.bcaw2017.com.
Cyber security is everyone’s responsibility
Play your part in building a resilient organization