Focusing Cybersecurity on What is Critical to Your Business
Having a clear governance and leadership model, translating that into a real risk management program and understanding what happened after a cyberattack are the three key strategies for eliminating or reducing your cybersecurity risk. “If you have no feedback loops, if you don’t understand what happened operationally, if you are not seeing attacks and the way you are handling them, are you really understanding what is happening in those systems in real time?” Coleman said in the Journal blog.
“The volume of security incidents increases every year, they’re getting more complex, and data breaches are more frequent and costly than ever. That’s why businesses are turning to cyber resilience – accept that security breaches are inevitable and develop the ability to efficiently handle them and move on, just like any other business challenge,” John Bruce, CEO of Resilient Systems, which sponsored the latest Ponemon Institute report on cyber threats, told SCMagazine.com recently.
Data breaches that get reported are just the tip of the iceberg, the Ponemon Institute says. Ponemon notes that as part of everyday business, there are exponentially more security incidents than data breaches. Under federal law, all security incidents need to be assessed to determine if they are data breaches that require reporting. The study’s findings indicate that organizations are not thoroughly assessing their security incidents. In fact, one-third of the respondents do not have an incident response process in place.
Coleman advises that cybersecurity teams use common language to keep the board and the C-suite up to date. “Generally, organizations that embrace it understand the conversation, they don’t just keep it in the technical area,” he said. “That is one thing that is still emerging, those reporting mechanisms and how to get the board to see the overall risk management in a way that translates the technical risk into showing how it relates to the business.
In a recent conversation Coleman had, a board director relayed to an IT person that his company had been talking about a digital transformation of the board for two years, but the conversation never involved the security team. It’s critical that companies close the loop on keeping everything informed and involved.
Chief Executive Group exists to improve the performance of U.S. CEOs, senior executives and public-company directors, helping you grow your companies, build your communities and strengthen society. Learn more at chiefexecutivegroup.com.
0
1:00 - 5:00 pm
We are in a period of rapid change. Customer needs, technologies, competitors and internal capabilities require companies to review and update their strategies for the new realities. In this workshop, strategy experts Steve Rutan and Denise Harrison will show you a systematic approach to strategic planning to help you refine or redefine your business strategy and approach including:
2:00 - 5:00 pm
Female leaders face the same issues all leaders do, but they often face additional challenges too. In this peer session, we will facilitate a discussion of best practices and how to overcome common barriers to help women leaders be more effective within and outside their organizations.
Limited space available.
10:30 - 5:00 pm
General’s Retreat at Hermitage Golf Course
Sponsored by UBS
General’s Retreat, built in 1986 with architect Gary Roger Baird, has been voted the “Best Golf Course in Nashville” and is a “must play” when visiting the Nashville, Tennessee area. With the beautiful setting along the Cumberland River, golfers of all capabilities will thoroughly enjoy the golf, scenery and hospitality.
The golf outing fee includes transportation to and from the hotel, greens/cart fees, use of practice facilities, and boxed lunch. The bus will leave the hotel at 10:30 am for a noon shotgun start and return to the hotel after the cocktail reception following the completion of the round.
