7 Tips for CEOs Looking to Boost Their Cybersecurity Knowledge -- Security Today

7 Tips for CEOs Looking to Boost Their Cybersecurity Knowledge

With 90 percent of companies admitting they’ve suffered at least one cyberattack, sitting back and avoiding the topic is not a suitable solution or strategy for CEOs hoping to keep their technology — not to mention their customers’ information — safe.

By Pete Metzger
Nov 02, 2015

The CEO is responsible for everything his company does or fails to do, and a good one knows exactly what’s going on at every level of the business.

When it comes to cybersecurity, however, many feel they lack sufficient knowledge or experience, so they elect to remain hands-off. They pass the task on to a group of (hopefully) well-trained and experienced cybersecurity experts.

Every day, we see headlines about security breaches, service disruptions, and phishing attempts on a wide range of targets. As these attacks become more common and more complicated, prevention has to rank very high on a senior leader’s priorities list.

How can CEOs go about understanding cybersecurity and boosting their companies’ defenses — especially if they’ve been avoiding it for a while? Here are seven ways to get on track:

1. Demystify the Issue

It’s easy to view cybersecurity as a discipline only information technology professionals can understand, but it’s really not as complicated as it may seem. It needs to be seen for what it is: a commonsense set of best practices that continually protect and reinforce the most vital parts of a company. Lose the techno-speak; talk about it honestly and in plain language. At its core, cybersecurity is a goal everyone can (and should) understand and work toward. Attackers know that all employees are vulnerable; therefore, workers at every level should be educated and provided with reinforcing classes regularly.

2. Identify and Prioritize the Most Critical Assets

As the leaders of cyber enterprises, CEOs need to comprehensively understand how the most critical assets of their businesses relate to technology. Customers’ personal information — such as credit card numbers, for example — should be defended first and foremost as the company plans a security strategy. Once a company has secured its most critical assets, it can then focus on smaller vulnerabilities.

3. Attend Conferences and Seminars

CEOs can effectively protect their organizations only if they’re staying up-to-date with the latest IP protection technology. Countless conferences are staged throughout the year to discuss the newest cybersecurity techniques. Networking at these events can spark ideas and collaborations that fuel future innovations for companies. It’s crucial that CEOs make room for these in their schedules.

4. Get to Know the Security Budget

CEOs need to ensure their companies have adequate resources and budget allocated toward preventing cyberattacks. Executives should keep in mind they’ll likely need to increase that budget every year as the world becomes increasingly digitized (and attacks become increasingly sophisticated).

5. Be Aware of the Extent of the Problem

The security risks that threaten a company today are more complex and difficult to track than ever, and new threats emerge every single day. Last year was dubbed “the year of the breach” as hackers developed nimbler malware and invaded sophisticated systems over extended periods. If CEOs are aware of the growing scale of security risks, their companies are much less likely to become victims.

6. Prepare for the Next Incident

Cyberdefense should be part of each business decision a leader makes, and every facet of the company should be prepared for the worst. Businesses need to practice their security operations by staging mock emergencies, and they should have in place a public relations strategy that includes clear protocols for reporting security breaches to employees, customers, and media.

7. Keep the Security Plan Simple and Accessible

It’s important that each worker feels a sense of responsibility for the health of his company’s cybersecurity. All employees must understand that the risk spans the enterprise and must know about the safeguards and programs in place. Be sure to use clear language when communicating a security strategy, and make sure everybody knows the protocol for dealing with the immediate aftermath of a breach.

The top CEOs of 2015 aren’t just delegating cybersecurity to the techie squad; they’re learning every day to become educated security guards themselves. When modern CEOs make their security strategies top priorities, they build stronger, safer futures for their companies.

Pete Metzger is vice chairman of DHR International, a global executive search firm. His clients include large public companies and privately held firms spanning a wide range of industries. Pete has the distinction of being the only consultant in the search industry to have a current U.S. government Top Secret (SSBI) clearance. He is on the boards of NTT DATA Federal Services, Harvard Enterprise Risk Solutions, Asero Worldwide, and AXELOS. Prior to entering the private sector, Pete served as a U.S. Marines officer for nearly 30 years. He also served as a foreign intelligence officer in the CIA and as the marine military assistant to President Ronald Reagan.

Featured

66 Percent of Cybersecurity Pros Say Job Stress is Growing

Sixty-six percent of cybersecurity professionals say their role is more stressful now than it was five years ago, according to the newly released 2024 State of Cybersecurity survey report from ISACA, a global professional association advancing trust in technology. Read Now
- Cybersecurity
Live from GSX 2024: Post-Show Recap

Another great edition of GSX is in the books! We’d like to thank our great partners for this years event, NAPCO, LVT, Eagle Eye Networks and Hirsch, for working with us and allowing us to highlight some of the great solutions the companies were showcasing during the crowded show. Read Now
- Industry Events
- GSX
Research: Cybersecurity Success Hinges on Full Organizational Support

Cybersecurity is the top technology priority for the vast majority of organizations, but moving from aspiration to reality requires a top-to-bottom commitment that many companies have yet to make, according to new research released today by CompTIA, the nonprofit association for the technology industry and workforce. Read Now
- Cybersecurity
Live from GSX 2024: Day 3 Recap

And GSX 2024 in Orlando, is officially in the books! I’d like to extend a hearty congratulations and a sincere thank-you to our partners in this year’s Live From program—NAPCO, Eagle Eye Networks, Hirsch, and LVT. Even though the show’s over, keep an eye on our GSX 2024 Live landing page for continued news and developments related to this year’s vast array of exhibitors and products. And if you’d like to learn more about our Live From program, please drop us a line—we’d love to work with you in Las Vegas at ISC West 2025. Read Now
- Industry Events
- GSX

Webinars

Push-to-Talk over Cellular – The NEXT Revolution
Napco Access Pro, Eagle Eye Networks Inc, Occupational Health & Safety, Security Today

The Security and Safety Summit
Salient Systems, Hanwha Vision (formerly Hanwha Techwin), Omnilert, Eagle Eye Networks Inc, HID Global, i-PRO Americas Inc., Arcules, Napco Access Pro

Before And After The School Bell Rings: K-12 Life Safety is 24-7-365

Whitepapers

Securitas Technology

Optimizing Security and Business Performance
American Funding Solutions

Securing Cash Flow: How Invoice Factoring Helps Security Companies Grow
Arcules

Physical security shift happens

New Products

QCS7230 System-on-Chip (SoC)

The latest Qualcomm® Vision Intelligence Platform offers next-generation smart camera IoT solutions to improve safety and security across enterprises, cities and spaces. The Vision Intelligence Platform was expanded in March 2022 with the introduction of the QCS7230 System-on-Chip (SoC), which delivers superior artificial intelligence (AI) inferencing at the edge. 3
Automatic Systems V07

Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file. 3
PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening. 3

7 Tips for CEOs Looking to Boost Their Cybersecurity Knowledge

Securitas Joins AI Pact for Responsible AI Use

16,000 Registrants from 86 Nations Participate in GSX 2024

Security Industry Association Announces Winners for the 2024 James Rothstein Business Scholarship

PureTech Systems Inc. Awarded Major Command and Control Contract by U.S. Government to Enhance National Security

Local Law Enforcement Heroes Honored at a Challenge Coin Ceremony Hosted by 3Si at GSX 2024

IDIS Americas Releases AI-Powered, License-Free VMS

Biden Administration Proposes Ban on Chinese Vehicles and Russian Tech for Autonomous Vehicles on U.S. Roads