Wednesday 19 July 2017

TheHill/Norman Comstock: Companies need to seriously step up their cybersecurity game

TheHill.com

Companies need to seriously step up their cybersecurity game

By Norman Comstock, opinion contributor - 07/17/17 08:00 AM EDT

 This spring marked a significant turning point regarding worldwide cyber aggression. The massive ransomware attacks on May 12 began in Europe and spread across the world infecting over 300,000 computers in more than 150 countries. Those infected were confronted with messages to pay $300 in bitcoin to unlock the files on the infected computer.

 The hackers were playing the percentages that some number of computers would not be properly patched. They were not targeting any specific companies or individuals There was no bias whatsoever — if the computer was connected to the internet, it was fair game. A significant amount of corporate cyber defenses were found to be lacking during the attack, and improvements need to be made.

ADVERTISEMENT
The attack was enough to make you “WannaCry,” which is the namesake of this insidious ransomware. The WannaCry episode presents a tremendous learning experience. Businesses across various industries learned that daily operations could be pervasively and negatively impacted by a cyberattack. Gas pump electronic pay systems would be disrupted, automotive manufacturing processes would be crippled or halted, hospitals would need to reschedule patient surgeries, and power generation utilities would have interruptions.

Many business leaders learned that their software patch management was behind. Additionally, many were surprised their backups didn’t work as planned, and their incident response planners didn’t have a playbook. There were also constraints that further contributed to the damage: lack of investment, lack of controls, or plain old apathy.

Although cyber defenders were mostly able to disarm hacker’s attacks, hackers are constantly creating variants that will be harder to detect, and perhaps costlier to the public and private sector. This type of malware has exceeded just nuisance and embarrassment — it is translating into serious dollars.

The insatiable appetite for better, faster, cheaper, and connectivity is our collective “new normal.” Cyber threats are becoming more numerous and damaging with every device that connects to the internet. The Verizon’s 2017 Data Breach Investigation Report illuminates how damaging attacks are for a company. Cyber risk is a business risk that has managerial, operational, financial, legal, and technological dimensions.

Technology changes faster than all the other dimensions, making it difficult for businesses to adapt to it. We’ve been trained to deal with catastrophic loss by reviewing business continuity plans and getting the right insurance coverages. That said, these strategies or tactics need to be revisited or updated to understand the appropriate mitigations to protect your company from a cyberattack. Insurance is a logical risk tool, but it doesn’t fix your cybersecurity posture. People, processes, and technology help you do that.

Do you have the right people, processes, and technologies to protect your business from cyber threats? A good place to start is to review the National Institute of Standards and Technology (NIST) Cybersecurity Framework, which has become a benchmark for what to do both nationally and across the globe.

Additionally, there is complementary guidance from the National Association of Corporate Directors (NACD), Information Systems Audit and Control Association (ISACA), and the Institute of Internal Auditors (IIA) on how to elevate cybersecurity to your company board’s governance agenda.

If that is too much to consider, review the Center for Internet Security punch list of 20 critical information security controls to determine not only are they in place but whether they are being done well enough. There are no silver bullets for cybersecurity. These frameworks do nothing for your organization if the company is unwilling to accept it has some gaps that will require a plan of action to close them.

The corporate world has demonstrated with previous attacks that it is not adequately prepared in regard to cyber defense. Cyberattacks will only increase, and the hackers will become more sophisticated. Thus, it’s vitally important that businesses ensure their assessments, vulnerability scanning, training, and incident response plans are functional and up to date.

Norman Comstock is a managing director at national accounting firm UHY Advisors with more than 25 years of experience in strategic consulting services. He advises clients on cybersecurity, enterprise risk management, and information technology governance.

The views expressed by contributors are their own and are not the views of The Hill.
Tags Technology Business companies cybersecurity Malware WannaCry
AddThis Sharing Buttons
Share to Facebook
Share to Twitter
Share to Google+

Load Comments (9)

Sponsored Content

    This Woman 'Treat' Her Nail Fungus in 10 Minutes, Watch How This Woman 'Treat' Her Nail Fungus in 10 Minutes, Watch How healthnewstips.today
    Clinical Genetic Testing Pushes NeoGenomics' Q1 Revenues Up 3 Percent Clinical Genetic Testing Pushes NeoGenomics' Q1… 360dx.com
    Building Intelligence: A New Path to Multi-family Success Building Intelligence: A New Path to Multi-family Success Greenbuilder

    Study: Here’s Why Mens’ Bathrooms Stink—And How to Defunk Them Study: Here’s Why Mens’ Bathrooms Stink—And How to… green builder
    Paleogenomic Analysis Places Ancient Eurasian Elephant Within African Lineages Paleogenomic Analysis Places Ancient Eurasian… GenomeWeb
    This Is Why Doctors No Longer Prescribe Metformin (WATCH) This Is Why Doctors No Longer Prescribe Metformin (WATCH) healthnewstips.today

Recommended by

Contributor's Signup
Sign up to become a Contributor

    Most Popular

    1
    Tensions reach new high between...
    Tensions are bubbling over between President Trump and Senate Republicans.
    3,058 Shares
    2
    Report: Donald Trump Jr. ‘...
    Donald Trump Jr. is reportedly "miserable" and can't wait for the next...
    1,320 Shares
    3
    Conservatives target Congress, not...
    Conservatives are lashing out at the Republican-controlled Congress over...
    882 Shares
    4
    US military spending $130K a month...
    The U.S. military is spending $130,000 a month to rent space in Trump...
    805 Shares
    5
    ICE chief praises Trump, plans to...
    Immigration and Customs Enforcement (ICE) Acting Director Thomas Homan on...
    687 Shares
    6
    Trump, Putin had second,...
    President Trump held a second, informal talk with Russian President...
    324 Shares
    7
    Shepard Smith responds to Hannity...
    Shepard Smith is firing back at fellow Fox News host Sean Hannity after...
    231 Shares
    8
    House bill includes funds for just...
    Bill also includes funding for "border fencing" and "secondary fencing."
    209 Shares
    9
    Dem rep: Stripping war...
    Rep. Barbara Lee (D-Calif.) blasted Speaker Paul Ryan early Thursday,...
    188 Shares
    10
    The Memo: GOP forms circular...
    The White House is blaming Democrats in public and Congressional...
    184 Shares
    11
    Krauthammer rips GOP's 'epic fail...
    Fox News's Charles Krauthammer ripped Republicans for their "epic fail" on...
    178 Shares
    12
    House Republicans work to torpedo...
    Two House Republicans are lobbying their colleagues to vote against a...
    153 Shares
    13
    Trump: Republicans 'never discuss...
    President Trump on Wednesday praised the GOP healthcare plan and said it...
    123 Shares
    14
    Dem donors buzzing about Kamala...
    The Democratic donor class is abuzz about Kamala Harris after the freshman...
    118 Shares
    15
    Bremmer struck by length, ‘warmth...
    Ian Bremmer said early Wednesday that the length and "warmth" of an ...
    112 Shares

Load more

    AP Top Stories July 19 A

    AP

    US military spending $130K a month to rent Trump Tower space: report

    TheHill.com

    Tensions reach new high between Trump, GOP

    TheHill.com

    AP Top Stories July 19 A

    AP

    US military spending $130K a month to rent Trump Tower space: report

    TheHill.com

More videos:

    US military spending $130K a month to rent Trump Tower space: report
    Tensions reach new high between Trump, GOP
    AP Top Stories July 19 A
    US military spending $130K a month to rent Trump Tower space: report
    Tensions reach new high between Trump, GOP
    AP Top Stories July 19 A
    US military spending $130K a month to rent Trump Tower space: report
    Tensions reach new high between Trump, GOP
    AP Top Stories July 19 A

TAKE A LOOK

    1 Officer Gives Account in Australian Woman's Death

    Rate President Donald Trump on His Job Performance

    Do You Approve or Disapprove President Trump's Job Performance?

    2 New Harry Potter Books Set to Be Published in October

    ALERT: Prayer Strengthens the Brain and Helps Fight Dementia

    Hannity Blasts GOP Over Failed Obamacare Repeal: 'Excuses, Broken Promises'

    Breakthrough: Arthritis Can Now Be Reversed

    Mitch McConnell: Obamacare Vote to Come Later, Calls on Dems for Input

    If You Are Over 50, Claim This Free Report Immediately . . .

    Reuters/Ipsos: Americans Want US Goods, but Not Willing to Pay More

Powered by
Don't miss a brief. Sign up for our daily email.
Your Email
TheHill.com
News

    Senate
    House
    Campaign
    Administration
    Regulation
    Media
    Briefing Room
    Latino
    Polls
    12:30 Report
    Floor Action
    In The Know
    Sunday Talk Shows
    More

Policy

    Defense
    Energy & Environment
    Finance
    Healthcare
    Technology
    International
    Transportation
    Cybersecurity
    National Security
    More

Video

    Latest
    Defense
    Energy & Environment
    Finance
    Healthcare
    Technology
    Transportation
    International
    Cybersecurity
    National Security
    Sunday Shows
    Events
    More

Opinion

    Columnists
    Contributors
    Congress Blog
    More

TheHill.com

    Privacy Policy
    Terms & Conditions
    Contact
    Subscriptions
    Advertise

Resources

    The Hill Apps
    Mobile Site
    People
    RSS

Contributors

    Become a Contributor

Other Areas

    Special Reports
    Galleries
    Classifieds
    Jobs

The Hill 1625 K Street, NW Suite 900 Washington DC 20006 | 202-628-8500 tel | 202-628-8503 fax

The contents of this site are ©2017 Capitol Hill Publishing Corp., a subsidiary of News Communications, Inc.

No comments: