Sunday, 19 January 2025
22.7 C
Durban

Cybersecurity is more than a tech issue – it’s a business problem too

Home Engineering ICT Cybersecurity is more than a tech issue – it’s a business problem...

A concerning number of South African companies are not prepared for the inevitability of a cyberattack despite the significant financial and reputational risks, according to Ryan Mer, Managing Director, eftsure Africa, a Know Your Payee (KYP) platform provider.

“Too few senior managers view cybersecurity as a business problem and not just a technology problem,” he said.

“The reality is cybersecurity is very much a business consideration. CEOs and CFOs will eventually face critical questions such as: How much money do we spend on cybersecurity? Do we change key processes? How do we create awareness and change company culture? Do we put security ahead of operational functionality? What is the role of internal processes and staff on data security and integrity?”

Mer added that because cybersecurity is a business-wide risk it requires more than isolated activities to be addressed. “This is where the role of a Chief Information Security Officer (CISO) is important. The CISO therefore needs to have technical and security skills and competencies, but equally as important, should understand the finance function, operations of the business, and have the business as well as communication skills to effectively create this span.”

While large corporates are more likely to have the resources to fill the CISO role, businesses below the corporate level may not. In such instances, said Mer, an outsourced or CISO-as-a-service offering could add immense value.

“Ultimately, and especially in relation to the Protection of Personal Information (POPI) Act, there needs to be a coherent strategy and allocated responsibility in place with respect to cybersecurity, data management, compliance and fraud prevention.”

He added that in the absence of commonplace and well-developed CISO roles, it is the CFO who should lead the way in addressing cybersecurity concerns, particularly in smaller organisations.

“It is potentially disastrous for the finance team to be ignorant of cyber risk. Attackers can target many areas of an organisation, but the dangers are usually measured in financial terms: CFOs cannot ignore cybersecurity simply because it is a complex issue outside their area of expertise.”

In addition to having the skills and oversight necessary to take a broad and long-term view of the potential financial impact of an attack, Mer said the CFO is one of the most natural custodians of data, from collection to its ongoing management.

“Attacks will very often target the finance department and its team members directly, and in many instances may even be perpetrated by or assisted by internal team members, in attempts to steal and defraud the business. CFOs need to ensure their own vulnerabilities are both understood, and urgently addressed.”

Most Popular

Mini excavators on the rise

POWERFUL new mini excavators from Kubota are proving that bigger is not always better in the construction industry where the mini excavator’s smaller size...

Collision prevention and proximity systems enhanced by field service regime

WHILE their primary objective is to ensure the safety of people, Proximity Detection Systems (PDS) and Collision Prevention System (CPS) installations also have a...

Nonwovens enable the sound of silence

Fibertex Nonwovens has designed a range of sound-absorbing nonwoven products which offer advanced acoustic performance. These high-performing acoustic materials provide the freedom to create...

Admixtures critical in durability of water-retaining structures

CONCRETE performance and durability underpin the positive impact of water-retaining structures on a society’s quality of life. These structures include water treatment plants and...
رومابت ماه بت پین باهیس bettingmagazine.org بت کارت یاس بت یک بت مگاپاری اونجابت آلوین بت betboro بت فا 1win بت وینر 4shart.com 1xbet giriş وان کیک بت وین بت ریتزو بت وان ایکس بت بت فوروارد