Criminal syndicates and cybersecurity: How to manage organisational risk | ALC Training News
- No comments
The internet is increasingly becoming the main platform over which organisations deliver goods and services. According to the Australian government, at the end of 2014 the country had more than 12.6 million internet subscribers.
However, as so many people use the internet, it has also become a medium increasingly utilised by criminals in order to access a business's information. One way to avoid this is through information security training courses for both individuals and organisations. Utilising best practice here can mean the difference between an information breach or a secure network.
The internet is also a medium increasingly used by criminals in order to access a business's information.
Digital threats to Australian companies
A recent survey by Ernst & Young (EY) found that just under 80 per cent of Australian companies believed that a criminal syndicate would be the next source of a cyberattack against their organisation.
EY's "Creating trust in the digital world" survey found that, alongside criminal syndicates, respondents believed hacktivists, employees and state-sponsored groups were also a risk for their organisation.
The survey's findings were drawn from 1,755 global organisations while over 60 of these were based in Australia. Interestingly, it also found that Australian companies believed the risk associated with these categories was higher than their international counterparts.
EY Oceania Cyber Leader Richard Watson pointed out that "nearly half of respondents said their budgets needed to nearly double to align their organisation's need for protection with its managements' tolerance for risk".
He further said that businesses in Australia needed to focus on cybersecurity more as they lacked confidence in their cyber-related capabilities. To better manage cybersecurity resources, an organisation's employees can participate in information security training, which will educate them on their role within the company's overall risk strategy.
Poor cybersecurity hygiene and increased risk
One of the report's other findings was that mobile devices such as smartphones were impacting an organisation's perception of security. Specifically, 81 per cent of respondents named employee habits on mobile devices as the biggest risk to their cybersecurity.
One such example is the Information Security Awareness Program run by ALC Training. Poor employee cybersecurity practices is a major problem for businesses, however, there are IT security training courses employees can attend to inculcate the required awareness and behaviours needed to keep an organisation's information secure.
The course targets human actions and aims to teach participants to be aware of how their behaviours can impact their organisation's cybersecurity risk.
It specifically emphasises that successful organisational information security is more than a company's policies and procedures but an overall mindset that workers have to embrace.
Some of the outcomes participants will learn include:
- Identifying phishing attacks though email
- Avoiding social engineering attacks
- How to respond to a cyberattack
- What to do in the event of a crisis
Identifying and mitigating the human factor related to cyberattacks is an important first step for organisations aiming to better secure their information. The course will help your organisation's cybersecurity policies and strategies be more effective and easier to follow.
If you believe your business or organisation could benefit from a cybersecurity course, talk to ALC Training today to find out more.
- ALC’s Cyber Scholarship Program – A Community Support Initiative
- ASD scraps Cloud Security Certification Program – Now What?
- Cybersecurity in your pocket: The essentials of mobile malware
- Where to Start with Digital Transformation?
- InfoSec Skilled Workforce Shortfall – Reality?
- What is the Office 365 Security & Compliance Centre?