This question came up during the Security 500 Conference last November, and it is still sticking with me. I don’t think you’ll find an easy or consistent answer.
One of the most rewarding parts of my job, as Editor of Security magazine, is the opportunity to speak with our readers. I recently had the pleasure to speak with Whit Chaiyabhat, staff vice president, crisis manager, for FM Global, one of the world’s largest commercial and industrial property insurers.
It may happen when you are least able to prevent it – when your executive or his family are alone and most vulnerable. Learning what to expect in the hours and days after an abduction will help you avoid becoming a bystander at a time when your leadership is most needed.
In the last few years, executives overseeing energy, utility and other industrial organizations have begun to worry about the threat of cyberattacks on our nation’s most critical infrastructures. Ten years ago, their main concerns were focused on safety or environmental risks. Back then, operators believed the virtual barricades, or air gaps, between networks and technologies were sufficient enough to defend against malware and cyberattacks.
Advocating for the return on investment (ROI) in IT security has traditionally been a challenge for IT professionals to communicate to management. IT teams are responsible for the complicated task of balancing budget limitations with strong protection that will reduce the risk of a cyberattack in today’s dynamic threat landscape. However, according to a recent Kaspersky Lab report, businesses are starting to invest more in IT security rather than treat it as a cost center.
Dedicating some portion of communications personnel time to the security team can drive global awareness of programs and initiatives critical to the safety of the organization, thereby increasing programmatic success.