6 measures you can perform to protect your business from cyber incidents.

27 % of Norwegian organizations experienced undesirable security incidents in 2016. 4 out of 10 cyber incidents led to loss in production, but most of the participants were unable to give accurate numbers regarding the costs of the attacks.

It is a general assumption that a large number of incidents never are recorded at all. The Verizon Data Breach Investigation Report for 2016 shows that only about 25 % of security breaches are discovered within days. The Mandiant M-Trends report from 2015 however shows that the average time from an information security breach happens until it is discovered in average is 146 days.

It is a general misconception that all cyber security breaches are criminal acts. Many cyber-attacks actually come from youth experimenting with how far they can push the line or from massive non-specific attacks. Some hacks are accidental and quite a few security incidents are pure mishaps, accidental breaches or lack of competence.

Even if you have a small business or you consider your information assets of little value to outsiders, your assets have value to you and your day to day operation. How long can you operate without access to your files and archives, online services, a PayPal solution or even the information you provide on your webpage?

To ensure your continued day to day operation, take the following measures to protect your business from cyber incidents:

  1. Train your employees in cyber security and awareness regularly
  2. Establish policies and routines for access and information security and require compliance
  3. Keep your software and hardware updated
  4. Keep updated on new cyber threats
  5. Implement barriers such as two factor authentication, firewalls and back-up
  6. Plan ahead and ensure your ability to handle incidents if they occur.

Sources

Næringslivets sikkerhetsråd (The Norwegian Business and Industry Security Council): Mørketallundersøkelsen 2016

Stanford Law School Conferences: The Verizon Data Breach Investigation Report for 2016

Harald Axelsen

Harald has over 20 years experience in sales, marketing and consultancy in emergency preparedness and crisis management. Background from companies such as Safetec, One Voice, UMS and Nordea.
Share on email
Share on linkedin
Share on facebook
Share on twitter

More related

Cyber attack considerations – Part 2

​IT-systems and information are becoming increasingly valuable assets in most businesses. As these assets become more valuable to you, it is likely they also become increasingly valuable to outsiders and criminals. Access to information and systems may be just as valuable and accessible to criminals today as picking pockets were 50 years ago.

Cyber attack considerations – Part 1

The number of cyber-attacks are increasing. In 2016 The Norwegian National Cyber Centre (NorCERT) registered 22.000 cyber-attacks towards critical public and private institutions. In Sweden, FRA (Försvarets radioanstalt) report that there are approximately 100.000 attacks yearly.

How To Build A Business Contingency Plan (BCP)!

Building a Business Contingency Plan (BCP) often becomes an overwhelming task combined with a touch of stress an uncertainty. Where to start? What is the end state? How do you move forward?

Here you have a simple and straight-forward way of how to start and get the BCP done!