The statistics are alarming. By mid-year 2021, the vast majority of breaches—85 percent—involved a human element. And 91 percent of breaches start with a phishing attack. These social engineering schemes put your employees squarely in the crosshairs of hackers. And that’s why you need to reinforce secure cyber defense practices with your employees. A successful attack can be incredibly costly in terms of downtime and damage to your business’s reputation, ignoring for a moment the costs that follow if you can’t get your data back at all.
The vast majority of CEOs already know cybercriminals are lurking in every digital space. From ransomware to social engineering schemes, cyber-attacks are impossible to ignore when they make the headlines almost every day. In a global PwC survey, 71 percent of U.S. CEOs say they are “extremely concerned” about cybersecurity threats. Forty-three percent of those same respondents said they plan to increase their cybersecurity and data privacy investment by double digits to prevent business impacts as much as possible.
Cybersecurity is front-page news, and its impacts are considerable. Consider that NBC News recently called ransomware “a major national security issue.” The same story says that the cybersecurity industry is stretched thin, with a shortage of workers to help stem the damage. The FBI 2020 Internet Crime Report shows how big the problem is, with the bureau’s Internet Crime Complaint Center receiving a record 791,790 complaints last year, with reported losses exceeding $4.1 billion. And today’s headlines make it clear that it’s only getting worse.
Cybersecurity has become a core concern in recent years for any organization that deals with sensitive information. With large-scale cyber attacks in the news practically every month, more and more companies have determined that they require the services of a highly experienced security expert. This has resulted in a relatively new executive-level position: the Chief Information Security Officer (CISO). These are folks with enterprise-level experience who, as officers of the company, make certain that security is embedded into the mission and day-to-day operations