How to Prevent Becoming the Next “Target” of a Data Security Breach

The Boston Globe said it best last week in the headline, “Target’s data theft leaves CEOs everywhere on the hot seat.” If it wasn’t clear prior to December of last year, it is now: CEOs, data security is ultimately your responsibility.

When a high-risk situation like Target’s data breach takes place, CEOs shouldn’t need to wonder, “how tight is our security?” Or, “could this happen to us?” Going forward, there will be no excuse for not knowing the answers to the tough questions.

Without micromanaging, how can you ensure that everything possible is being done at your firm to protect valuable data from being hacked and at the same time protect yourself from fallout?

We offer four suggestions:

1. Regularly discuss cyber-security with your CIO. As part of your executive leadership team, you are already meeting with the CIO regularly. If cyber-security is not currently on your discussion list, start including it. When a news story runs about a company being hacked, ask your CIO to present to the leadership team the specifics of that situation and how and why it would not happen to your company. If those questions cannot be answered, then part two of that discussion should be which tools and solutions need to be acquired to achieve your security goals.

2. Do a walk-through (or virtual-walk through) of the data center. Have your CIO show you (and the rest of the C-suite) exactly how your hacker protection tools, firewalls, etc. work. This will give everyone an opportunity to ask questions and pose hypothetical scenarios. Also, ensure you are on the distribution list for the results of all quarterly or annual cyber-security tests.

3. Set cyber-security goals and add security metrics to your dashboard. Cyber-security is not a one-and-done process. Just like revenue and cost goals, it needs constant monitoring. Adding a metric to your dashboard, such as “number of potential breaches vs. number of actual breaches this month” will ensure that you are constantly on top of the cyber-security situation.

4. Hire a hacker (or someone hacker-like). Talk about money well spent. Imagine being able to report to your board on a monthly basis that you have a “zero” track record for hacker penetration. You can, by employing or contracting with a programmer who uses the latest tricks of the trade to try to break through your server walls, and then shows your IT team how to stop him.

To coin another catchy title, this one from Forbes, Target’s dismissal of CEO Gregg Steinhafel “isn’t just about the breach.” It’s also about lack of ability to react quickly, lack of transparency when they found out, and the fact that the company wasn’t on very solid footing before the breach happened. These are all areas for which the CEO is responsible.

Like it or not, maintaining cyber-security is now part of every CEO’s job description. It’s not enough to assume IT has it under control. You are going to have to ask them to prove it to you going forward.

Additional reading:

Target CEO Gregg Steinhafel steps down in wake of huge data breach

Target’s data theft leaves CEOs everywhere on the hot seat

Target’s CEO Departure Isn’t Just About The Data Breach

 


MORE LIKE THIS

  • Get the CEO Briefing

    Sign up today to get weekly access to the latest issues affecting CEOs in every industry
  • upcoming events

    Roundtable

    Strategic Planning Workshop

    1:00 - 5:00 pm

    Over 70% of Executives Surveyed Agree: Many Strategic Planning Efforts Lack Systematic Approach Tips for Enhancing Your Strategic Planning Process

    Executives expressed frustration with their current strategic planning process. Issues include:

    1. Lack of systematic approach (70%)
    2. Laundry lists without prioritization (68%)
    3. Decisions based on personalities rather than facts and information (65%)

     

    Steve Rutan and Denise Harrison have put together an afternoon workshop that will provide the tools you need to address these concerns.  They have worked with hundreds of executives to develop a systematic approach that will enable your team to make better decisions during strategic planning.  Steve and Denise will walk you through exercises for prioritizing your lists and steps that will reset and reinvigorate your process.  This will be a hands-on workshop that will enable you to think about your business as you use the tools that are being presented.  If you are ready for a Strategic Planning tune-up, select this workshop in your registration form.  The additional fee of $695 will be added to your total.

    To sign up, select this option in your registration form. Additional fee of $695 will be added to your total.

    New York, NY: ​​​Chief Executive's Corporate Citizenship Awards 2017

    Women in Leadership Seminar and Peer Discussion

    2:00 - 5:00 pm

    Female leaders face the same issues all leaders do, but they often face additional challenges too. In this peer session, we will facilitate a discussion of best practices and how to overcome common barriers to help women leaders be more effective within and outside their organizations. 

    Limited space available.

    To sign up, select this option in your registration form. Additional fee of $495 will be added to your total.

    Golf Outing

    10:30 - 5:00 pm
    General’s Retreat at Hermitage Golf Course
    Sponsored by UBS

    General’s Retreat, built in 1986 with architect Gary Roger Baird, has been voted the “Best Golf Course in Nashville” and is a “must play” when visiting the Nashville, Tennessee area. With the beautiful setting along the Cumberland River, golfers of all capabilities will thoroughly enjoy the golf, scenery and hospitality.

    The golf outing fee includes transportation to and from the hotel, greens/cart fees, use of practice facilities, and boxed lunch. The bus will leave the hotel at 10:30 am for a noon shotgun start and return to the hotel after the cocktail reception following the completion of the round.

    To sign up, select this option in your registration form. Additional fee of $295 will be added to your total.