Taking the Offensive for Cyber Security
Taking the Offensive for Cyber SecurityBack to overview
71% have procedures in place to review the tools and strategies deployed by cyber criminals but few – just 30% - understand them.
Businesses today know there is a high risk of a cyber attack from a rising class of criminal. But awareness is not always translating into action. Being aware does not help you prevent, protect against, or respond to attacks. And if only a few tech-savy people in the company understand the procedures being put in place, this is not benefiting the organization as a whole, and even potentially creating new risks. Only 22% of organizations feel they are fully prepared to combat security breaches perpetrated by organised crime. This number is not high enough.
It is time for companies to make cyber a real priority in the board room, and through all parts of the business. 73% of companies say that cyber is on the agenda, but only 54% of the companies take the time to educate the directors on what this really means.
And it is not only the Fortune 500 companies that need to be concerned. Will Dixon, Deputy Director of Intelligence at Barclays, sees the criminals looking at softer targets: ”We’re seeing criminals increasingly targeting SME’s and high value account holders.”
All of this adds up to one main point: it is time to rethink the cyber threat and take the necessary steps to prevent, protect, respond, and especially educate. An important factor today is speed. "The first 48 hours are absolutely crucial," says Benny Bogaerts, KPMG Cyber Security Director. Attackers are quick, and can carry out an attack at alarming speed. So companies need to be able to be agile to respond quickly. But for many organizations they face barriers. 38% of companies claim they are restricted by inflexible processes with their company, 49% feel they are restricted by regulation, and 45% lack the people and skills.
In this joint BT and KPMG report drawn from interviews with multinationals, conversations with our clients and evidence gathered from work carried out by both organizations we set out to give a current perspective of the emerging landscape and our recommendations on how to counter it.
Discover all the details in the full report, or take a look chapter by chapter.
No one doubts that an attack by digital criminals is a real and present danger, but the scale, rapid growth and everchanging nature of the threat are often not fully comprehended.
The twenty-first century digital criminal is best characterised as a ruthlessly efficient entrepreneur or CEO, operating in a highly developed and rapidly evolving dark market. Digital crime chiefs seek to make money by discreetly disrupting their target markets and exploiting the vulnerabilities and weaknesses of companies who honestly serve their customers. In short, they are a CEO without the constraints of regulation or morals, but who can face rather stiffer penalties if they fail to make money for their demanding shareholders.
Taking the offensive: making cyber attack harder and less profitable. The increasing sophistication and tenacity of cyber criminals mean that no organisation can be 100% assured that its systems are secure. But businesses can take steps to make successful attacks more difficult, more costly and ultimately much less profitable.
Digital attacks can be carried out at breath-taking speed using tools and strategies that are constantly updated. Businesses must be as agile and quick on their feet as their criminal assailants but their response is hampered by a range of institutional, regulatory and technological drag factors.
Digital risk and digital opportunity are two sides of the same coin. As businesses press ahead with digital transformation, they are inevitably exposed to increased risk, and without robust security organisations are unable to take full advantage of opportunities to serve customers more effectively, and increase sales through new channels while streamlining internal processes. Many businesses are now seeking to ensure that security is a strategic enabler and as a result we are seeing the emergence of the Chief Digital Risk Officer role.
Taking the offensive: Working together to disrupt digital crime
In this joint BT and KPMG report drawn from interviews with multinationals, conversations with our...Download
Chapter 1: Rethink the difical security threat
No one doubts that an attack by digital criminals is a real and present danger,...Download
Chapter 2: Ruthless and Rational Entrepreneurs
The twenty-first century digital criminal is best characterised as a ruthlessly efficient entrepreneur or CEO,...Download
Chapter 3: Taking the fight to the attacker
Taking the offensive: making cyber attack harder and less profitable. The increasing sophistication and tenacity...Download
Chapter 4: The need for speed
Digital attacks can be carried out at breath-taking speed using tools and strategies that are...Download