Information Security

Preparation for Cyber Attacks and Disaster Recovery Must Go to “Awareness 2.0”

Organisations have already recognised that people are valuable – often the most valuable – assets. They also know that people represent risk, because of the possibility of human error, negligence, and even deliberate damage. Cybercriminals are well aware of this too. They often prefer to attack using social engineering tactics to learn user and system access codes: it’s easier and faster than trying to break through layers of hardware and software protection. Many enterprises have therefore invested in programs to increase the awareness of their employees about information security in particular, and the need to protect and back up data in general. Now, it’s time to shift gears and change up for “awareness 2.0”. Read more

2015-11-25T13:24:13+11:00By |Disaster Recovery|

Business Continuity Depends on a Culture of Security Too

While protecting your organisation against disasters and blunders is a necessary step, it’s not sufficient for solid business continuity. Security breaches are a threat to all businesses and public agencies. With information fast becoming one of the most valuable assets an organisation can have, the natural consequence is that it also needs to be protected against theft or sabotage. But where should an enterprise start? The fact is that while technologies can be complex and security measures for those technologies doubly so, much of the protection required concerns the attitude and behaviour of employees. So while you’re evaluating the latest in anti-virus software and Internet firewalls, remember the following key points as well. Read more

2014-09-01T11:22:14+10:00By |Disaster Recovery|

What the World Needs Now is… More Good-Quality Cyber-Security Training

Love, sweet love, is a great idea for the world. Hal David and Burt Bacharach made a great song out of suggesting that we could use more of it. However, there also are a few more things that could be added to the list. One of them is cyber-security training. A recent study by Unisys indicates that almost 70 percent of critical infrastructure providers had at least one significant security breach within the preceding year. In a ‘cause and effect’ follow-on, the same study showed that employees lacked training cyber-security. In fact, only about one in 16 organisations (6 percent) did anything about it. So what’s the problem – complacency or lack of solutions? Read more

2014-08-14T09:31:18+10:00By |DRI International, Training|