April 25, 2017What does cyber resilience mean to you? The answer will surely vary across industries. And, to some, the term might not mean anything at all. In fact, according to new research from Vanson Bourne, not enough organizations are making cyber resilience planning a priority.
Only 30 percent have already adopted a cyber resilience strategy, with about one-third still in the early stages of development or planning. Too many organizations are leaving themselves unprepared for the unknown, and it doesn’t have to be this way.
Organizations of all sizes need a cyber resilience strategy; no exceptions. Yes, security is critical, but not the only piece of the cyber resilience equation. Multi-purpose data archiving, business continuity and the ability to empower the end-user should also have equal consideration. This holistic approach to IT management is what we call cyber resilience, and this is core to our business and how we interact with our customers.
Cyber resilience resonates throughout everything we do at Mimecast – it’s engrained in our internal and external philosophy. But, we wanted to find out how other industry thought leaders are thinking about cyber resilience, and how they are applying it to their own business models. So, we took the great opportunity to tap into the powerful mindshare at RSA Conference 2017 by hosting the first-ever ‘Cyber Resilience Think Tank’ at the San Francisco NASDAQ Center. Insights from the event were captured in a Cyber Resilience Report released today from Cybersecurity Ventures.
I had the pleasure of leading this think tank discussion, which was made up of almost two-dozen leaders in the cybersecurity industry, and moderated by Ari Schwartz, Venable CEO and former member of the White House National Security Council. The impressive caliber of Think Tank participants – which ranged from Malcolm Harkins, chief security and trust officer of Cylance Inc., to Helen Rabe, head of information security for UK-based Costa Coffee – validates that cyber resilience is a hot-button issue that organizations of all sizes and across all industries should care about – and plan for.
The Think Tank attendees validated our approach to cyber resilience planning. It starts with the understanding that security alone simply isn’t enough. And it ends with a comprehensive plan to manage IT, and hopefully, a philosophy that helps drive your business and customer relationships.
Now, more than ever, organizations need a broad approach to cyber resilience planning and they can’t expect do it alone. Industry leaders need to continue to push cyber resilience and provide actionable insights and prescriptive advice to drive towards a more cyber resilient future.
Think Tank contributors included:
- Matt Crouse, Director, Information Security & Compliance, Lucky Brand, LLC
- Joe Gajdosik, Director of IT Security, Curtiss-Wright Corporation
- Jason Gunnoe, Chief Information Security Officer, Bridgestone Tires
- Cathy Hammond, Chief Security Architect, Teleflex
- Jim Hansen, COO, PhishMe
- Gary Hayslip, Chief Information Security Officer, City of San Diego
- Ed Jennings, COO, Mimecast
- Joel Lowe, Head of Information Security, Sonic Automotive
- Neil Murray, Chief Technology Officer, Mimecast
- Phil Owen, Global Head of Information Security, IHS Markit
- Helen Rabe, Head of Information Security, Costa Coffee
- Brian Reed, Chief Product Officer, ZeroFox
- John Sapp Jr., Director, IT Security & Controls, Information Security Officer, Orthofix, Inc.
- Ari Schwartz, Managing Director of Cybersecurity Services, Think Tank Moderator, Venable, LLC
- Maurice Stebila, IT Security, Compliance & Privacy Office, Harman International Industries
- Chris Wysopal, CTO & Co-Founder, Veracode
Missed the latest news in today’s cybersecurity world? Having trouble keeping up with all the various news stories on ransomware? No problem! Mimecast has got you covered. Our Trending News blog series will bring you up to speed on recent industry news in one place. Check out our top 10 news articles regarding cybersecurity, ransomware and more for the month of April.
1. Ransomers Are Coming for Your Internet-Connected Teddy Bears via New York Post
- Half a million customer accounts exposed via data breach of internet connected smart teddy bears. http://mim.ec/2lDo3Eu
2. A Phishing Campaign About Nothing via SC Magazine
- A new email phishing scam sends emails with no text in the email body, just an attachment with malware. http://mim.ec/2nPswbk
3. Half of All Phishing Attacks in 2016 Targeted Financial Data via eSecurity Planet
- According to a Kaspersky Labs report discussed in this article, half of phishing attacks aimed at stealing victims’ money. http://mim.ec/2mxmNGq
4. Phishing: Draining the Corporate Bottom Line via Computer World
- Robert C Covington explains how the cost of being a corporate phishing victim far outweigh the cost and time of putting a prevention plan in place.http://mim.ec/2oltlX7
5. More Than 120,000 Affected by W-2 Phishing Scams this Tax Season via CSO
- The 2017 tax season proved to be primetime for phishing attacks targeting W-2s. http://mim.ec/2mFuLeG
6. What’s the Difference Between State-Backed Hackers and Cybercrime Gangs? Nothing At All via ZD Net
- As organized cybercrime becomes more sophisticated, businesses now need to worry about more than just government based hacking groups.http://mim.ec/2oCF8zA
7. Trump Seeks $1.5B for Cybersecurity in FY 2018 DHS Budget via Bloomberg BNA
- The Department of Homeland Security would receive $1.5 Billion for cybersecurity efforts under President Donald Trump’s budget blueprint for fiscal year 2018. http://mim.ec/2nAsUrF
8. Two Major US Technology Firms ‘Tricked Out of $100M via BBC News
- A man from Lithuania pretended to be a legitimate business partner of two US tech companies via an email phishing scam, ultimately conning the two companies out of $100 Million. http://mim.ec/2nzOnkC
9. Cybercriminals Exploit March Madness Frenzy via Dark Reading
- Users looking to stream matches during March Madness should beware as malicious phishing activity has increased with fake phishing pages and adware potentially exposing confidential data to hackers. http://mim.ec/2nzTKR4
10. Open-Source Developers Targeted in Sophisticated Malware Attack via PC World
- An information stealing program called Dimnie targets GitHub users. http://mim.ec/2nE1UcA
Stay tuned for the next installment of our Trending News blog, keeping you up to date with what's happening in the cybersecurity world!