Security Magazine logo
search
cart
facebook twitter linkedin youtube
  • Sign In
  • Create Account
  • Sign Out
  • My Account
Security Magazine logo
  • NEWS
    • Security Newswire
    • Technologies & Solutions
  • MANAGEMENT
    • Leadership Management
    • Enterprise Services
    • Security Education & Training
    • Logical Security
    • Security & Business Resilience
    • Profiles in Excellence
  • PHYSICAL
    • Access Management
    • Fire & Life Safety
    • Identity Management
    • Physical Security
    • Video Surveillance
    • Case Studies (Physical)
  • CYBER
    • Cybersecurity News
    • More
  • BLOG
  • COLUMNS
    • Cyber Tactics
    • Leadership & Management
    • Security Talk
    • Career Intelligence
    • Leader to Leader
    • Cybersecurity Education & Training
  • EXCLUSIVES
    • Annual Guarding Report
    • Most Influential People in Security
    • The Security Benchmark Report
    • The Security Leadership Issue
    • Top Guard and Security Officer Companies
    • Top Cybersecurity Leaders
    • Women in Security
  • SECTORS
    • Arenas / Stadiums / Leagues / Entertainment
    • Banking/Finance/Insurance
    • Construction, Real Estate, Property Management
    • Education: K-12
    • Education: University
    • Government: Federal, State and Local
    • Hospitality & Casinos
    • Hospitals & Medical Centers
    • Infrastructure:Electric,Gas & Water
    • Ports: Sea, Land, & Air
    • Retail/Restaurants/Convenience
    • Transportation/Logistics/Supply Chain/Distribution/ Warehousing
  • EVENTS
    • Industry Events
    • Webinars
    • Solutions by Sector
    • Security 500 Conference
  • MEDIA
    • Videos
      • Cybersecurity & Geopolitical Discussion
      • Ask Me Anything (AMA) Series
    • Podcasts
    • Polls
    • Photo Galleries
  • MORE
    • Call for Entries
    • Classifieds & Job Listings
    • Continuing Education
    • Newsletter
    • Sponsor Insights
    • Store
    • White Papers
  • EMAG
    • eMagazine
    • This Month's Content
    • Advertise
  • SIGN UP!

Why Cyber is a Business Risk Issue

By Mark McCourt
Mark McCourt
April 1, 2013
The cyber crisis impacting U.S.-based enterprises is often swept under the IT rug as a technology issue to be delegated to and resolved by information technology experts who have little to no view on the overall organization’s business or risk issues. At the recent RSA Security Conference, session after session and meeting after meeting, researchers, CSOs and consultancies voiced the same issues: It’s a business problem, not a technology problem, because you're not securing IT – you need to secure the business.

In a public company, would IT staffers be concerned with the recent HBGary research that cyber attacks can affect investor decisions and stock prices? Probably not. But the C-suite has the unique ability to understand business risk, and once you understand that your market cap is dropping due to cyber crime exposure and risk, you understand you have a business problem. Here are the facts:

•  67% of investors are likely to research whether a company has been fined or sanctioned for previous cybersecurity incidents;

•  69% are unlikely to invest in a company with a history of data breaches;

•  78% are unlikely to invest in a company with a history of one or more cyber attacks;

•  71% would be interested in reviewing a company’s cybersecurity history if it was included in regulatory filings; and

•  66% of investors are more concerned about a company’s reaction to a cyber attack than the attack itself.

Investors are twice as concerned about customer data (57 percent) versus theft of intellectual property (29 percent), the survey found. “Consumer data breaches grab the headlines and the large liability settlements.  But the lack of concern for IP theft underscores the need for broader education about the financial risk IP theft poses to a company,” says Jim Butterworth, HBGary chief security officer. “The pilfering of American company trade secrets and other sensitive data is happening every day – costing our corporations billions of dollars in lost revenue.” If it sounds like a business problem for a business executive with expertise in risk, resilience and security to manage, you are right. It is.

One consistent research report is the 6th Annual Verizon Data Breach study authored by Wade Baker. The most telling change is that the number of organizations supplying cyber crime event data to the report has grown from six to 18 in one year. That suggests the threat is growing, which it is. The Verizon RISK team has tracked more than 2,500 events and 1.2 billion compromised records. According to the Ponemon Institute, that means a $360-billion-plus business problem.

The company F5 surveyed attendees with an IT security role about their organization’s preparedness to address emerging threats. The results: “The survey revealed that organizations are struggling to keep pace with the changing face of security. Virtualization, BYOD and shifts in IT infrastructures and applications along with the complexity of attack types are driving new threats. IT admits that these threats are beyond the scope of traditional safeguards. As such, IT reports that their general security readiness is subpar.” Now that’s a business problem!

Furthermore, there is a 2012 FBI report, Economic Espionage: A Foreign Intelligence Threat to American Jobs and Homeland Security, that states that the American economy is losing billions of dollars to economic espionage each year. How can anyone wearing a “C” on their title consider this a technology problem? The mere existence of the report screams business problem.

Identifying risk and eliminating vulnerabilities in the cyber world is no different than the physical world. Everything just moves faster, and your perimeter doesn’t exist. Some of the best practices are designed to help your enterprise regain the advantages of vigilance and time, which have been lost to motivated cyber criminals. Big data analytics and cloud-based solutions give you visibility to defend, detect and remediate, just like in the physical world, shares Dave Frampton of Cisco.

Cyber is the ultimate silo-killer for the security organization chart because the weakest link is not just a vulnerability to one area of your business, it is an open door to your entire business. And silos create weak links. Say good-bye to physical, corporate or IT security and embrace an enterprise security structure and strategy that protects the entire business: enterprise risk and resilience.

Security magazine will be adding more information and thought leadership on the business risk issue of enterprise risk and resilience to include cyber-related threats and solutions to be an even broader and better resource. Because one thing is certain about mitigating business risk: It’s simple, but it’s not easy.  

KEYWORDS: big data cyber espionage cyber risk mitigation cybercrime security conferences

Share This Story

Looking for a reprint of this article?
From high-res PDFs to custom plaques, order your copy today!

Mark McCourt was once the publisher of Security magazine.

Recommended Content

JOIN TODAY
To unlock your recommendations.

Already have an account? Sign In

  • Security's Top Cybersecurity Leaders 2024

    Security's Top Cybersecurity Leaders 2024

    Security magazine's Top Cybersecurity Leaders 2024 award...
    Cybersecurity
    By: Security Staff
  • cyber brain

    The intersection of cybersecurity and artificial intelligence

    Artificial intelligence (AI) is a valuable cybersecurity...
    Security Enterprise Services
    By: Pam Nigro
  • artificial intelligence AI graphic

    Assessing the pros and cons of AI for cybersecurity

    Artificial intelligence (AI) has significant implications...
    New Security Technology
    By: Charles Denyer
Subscribe For Free!
  • Security eNewsletter & Other eNews Alerts
  • eMagazine Subscriptions
  • Manage My Preferences
  • Online Registration
  • Mobile App
  • Subscription Customer Service

More Videos

Sponsored Content

Sponsored Content is a special paid section where industry companies provide high quality, objective, non-commercial content around topics of interest to the Security audience. All Sponsored Content is supplied by the advertising company and any opinions expressed in this article are those of the author and not necessarily reflect the views of Security or its parent company, BNP Media. Interested in participating in our Sponsored Content section? Contact your local rep!

close
  • Crisis Response Team
    Sponsored byEverbridge

    Automate or Fall Behind – Crisis Response at the Speed of Risk

  • Perimeter security
    Sponsored byAMAROK

    Why Property Security is the New Competitive Advantage

  • Duty of Care
    Sponsored byAMAROK

    Integrating Technology and Physical Security to Advance Duty of Care

Popular Stories

Pills spilled

More than 20,000 sensitive medical records exposed

Laptop in darkness

Verizon 2025 Data Breach Investigations Report shows rise in cyberattacks

Coding on screen

Research reveals mass scanning and exploitation campaigns

White post office truck

Department of Labor Sues USPS Over Texas Whistleblower Termination

Computer with binary code hovering nearby

Cyberattacks Targeting US Increased by 136%

2025 Security Benchmark banner

Events

May 22, 2025

Proactive Crisis Communication

Crisis doesn't wait for the right time - it strikes when least expected. Is your team prepared to communicate clearly and effectively when it matters most?

September 29, 2025

Global Security Exchange (GSX)

 

View All Submit An Event

Products

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

Security Culture: A How-to Guide for Improving Security Culture and Dealing with People Risk in Your Organisation

See More Products

Related Articles

  • cyber 2 responsive default

    Business Interruption due to a Breach is Top Cyber Risk Concern

    See More
  • board of directors, cybersecurity, security leadership

    Why and How Cybersecurity is Your Board's Business Too

    See More
  • Risk Management

    Why You Need Cybersecurity Risk Management

    See More
×

Sign-up to receive top management & result-driven techniques in the industry.

Join over 20,000+ industry leaders who receive our premium content.

SIGN UP TODAY!
  • RESOURCES
    • Advertise
    • Contact Us
    • Store
    • Want More
  • SIGN UP TODAY
    • Create Account
    • eMagazine
    • eNewsletter
    • Customer Service
    • Manage Preferences
  • SERVICES
    • Marketing Services
    • Reprints
    • Market Research
    • List Rental
    • Survey/Respondent Access
  • STAY CONNECTED
    • LinkedIn
    • Facebook
    • YouTube
    • X (Twitter)
  • PRIVACY
    • PRIVACY POLICY
    • TERMS & CONDITIONS
    • DO NOT SELL MY PERSONAL INFORMATION
    • PRIVACY REQUEST
    • ACCESSIBILITY

Copyright ©2025. All Rights Reserved BNP Media.

Design, CMS, Hosting & Web Development :: ePublishing