With 90 percent of companies admitting they’ve suffered at least one cyberattack, sitting back and avoiding the topic is not a suitable solution or strategy for CEOs hoping to keep their technology — not to mention their customers’ information — safe.

7 Tips for CEOs Looking to Boost Their Cybersecurity Knowledge

With 90 percent of companies admitting they’ve suffered at least one cyberattack, sitting back and avoiding the topic is not a suitable solution or strategy for CEOs hoping to keep their technology — not to mention their customers’ information — safe.

  • By Pete Metzger
  • Nov 02, 2015

The CEO is responsible for everything his company does or fails to do, and a good one knows exactly what’s going on at every level of the business.    

When it comes to cybersecurity, however, many feel they lack sufficient knowledge or experience, so they elect to remain hands-off. They pass the task on to a group of (hopefully) well-trained and experienced cybersecurity experts.  

With 90 percent of companies admitting they’ve suffered at least one cyberattack, sitting back and avoiding the topic is not a suitable solution or strategy for CEOs hoping to keep their technology — not to mention their customers’ information — safe.

Every day, we see headlines about security breaches, service disruptions, and phishing attempts on a wide range of targets. As these attacks become more common and more complicated, prevention has to rank very high on a senior leader’s priorities list.

How can CEOs go about understanding cybersecurity and boosting their companies’ defenses — especially if they’ve been avoiding it for a while? Here are seven ways to get on track:

1. Demystify the Issue

It’s easy to view cybersecurity as a discipline only information technology professionals can understand, but it’s really not as complicated as it may seem. It needs to be seen for what it is: a commonsense set of best practices that continually protect and reinforce the most vital parts of a company. Lose the techno-speak; talk about it honestly and in plain language. At its core, cybersecurity is a goal everyone can (and should) understand and work toward. Attackers know that all employees are vulnerable; therefore, workers at every level should be educated and provided with reinforcing classes regularly.

2. Identify and Prioritize the Most Critical Assets

As the leaders of cyber enterprises, CEOs need to comprehensively understand how the most critical assets of their businesses relate to technology. Customers’ personal information — such as credit card numbers, for example — should be defended first and foremost as the company plans a security strategy. Once a company has secured its most critical assets, it can then focus on smaller vulnerabilities.

3. Attend Conferences and Seminars

CEOs can effectively protect their organizations only if they’re staying up-to-date with the latest IP protection technology. Countless conferences are staged throughout the year to discuss the newest cybersecurity techniques. Networking at these events can spark ideas and collaborations that fuel future innovations for companies. It’s crucial that CEOs make room for these in their schedules.  

4. Get to Know the Security Budget

CEOs need to ensure their companies have adequate resources and budget allocated toward preventing cyberattacks. Executives should keep in mind they’ll likely need to increase that budget every year as the world becomes increasingly digitized (and attacks become increasingly sophisticated).

5. Be Aware of the Extent of the Problem

The security risks that threaten a company today are more complex and difficult to track than ever, and new threats emerge every single day. Last year was dubbed “the year of the breach” as hackers developed nimbler malware and invaded sophisticated systems over extended periods. If CEOs are aware of the growing scale of security risks, their companies are much less likely to become victims.

6. Prepare for the Next Incident

Cyberdefense should be part of each business decision a leader makes, and every facet of the company should be prepared for the worst. Businesses need to practice their security operations by staging mock emergencies, and they should have in place a public relations strategy that includes clear protocols for reporting security breaches to employees, customers, and media.

7. Keep the Security Plan Simple and Accessible

It’s important that each worker feels a sense of responsibility for the health of his company’s cybersecurity. All employees must understand that the risk spans the enterprise and must know about the safeguards and programs in place. Be sure to use clear language when communicating a security strategy, and make sure everybody knows the protocol for dealing with the immediate aftermath of a breach. 

The top CEOs of 2015 aren’t just delegating cybersecurity to the techie squad; they’re learning every day to become educated security guards themselves. When modern CEOs make their security strategies top priorities, they build stronger, safer futures for their companies.

 

Pete Metzger is vice chairman of DHR International, a global executive search firm. His clients include large public companies and privately held firms spanning a wide range of industries. Pete has the distinction of being the only consultant in the search industry to have a current U.S. government Top Secret (SSBI) clearance. He is on the boards of NTT DATA Federal Services, Harvard Enterprise Risk Solutions, Asero Worldwide, and AXELOS. Prior to entering the private sector, Pete served as a U.S. Marines officer for nearly 30 years. He also served as a foreign intelligence officer in the CIA and as the marine military assistant to President Ronald Reagan.

Featured

  • Integration Imagination: The Future of Connected Operations

    Security teams that collaborate cross-functionally and apply imagination and creativity to envision and design their ideal integrated ecosystem will have the biggest upside to corporate security and operational benefits. Read Now

  • Smarter Access Starts with Flexibility

    Today’s workplaces are undergoing a rapid evolution, driven by hybrid work models, emerging smart technologies, and flexible work schedules. To keep pace with growing workplace demands, buildings are becoming more dynamic – capable of adapting to how people move, work, and interact in real-time. Read Now

  • Trends Keeping an Eye on Business Decisions

    Today, AI continues to transform the way data is used to make important business decisions. AI and the cloud together are redefining how video surveillance systems are being used to simulate human intelligence by combining data analysis, prediction, and process automation with minimal human intervention. Many organizations are upgrading their surveillance systems to reap the benefits of technologies like AI and cloud applications. Read Now

  • The Future is Happening Outside the Cloud

    For years, the cloud has captivated the physical security industry. And for good reason. Remote access, elastic scalability and simplified maintenance reshaped how we think about deploying and managing systems. But as the number of cameras grows and resolutions push from HD to 4K and beyond, the cloud’s limits are becoming unavoidable. Bandwidth bottlenecks. Latency lags. Rising storage costs. These are not abstract concerns. Read Now

  • Right-Wing Activist Charlie Kirk Dies After Utah Valley University Shooting

    Charlie Kirk, a popular conservative activist and founder of Turning Point USA, died Wednesday after being shot during an on-campus event at Utah Valley University in Orem, Utah Read Now

Most   Popular

New Products

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file.

  • AC Nio

    AC Nio

    Aiphone, a leading international manufacturer of intercom, access control, and emergency communication products, has introduced the AC Nio, its access control management software, an important addition to its new line of access control solutions.

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.