Cyber security: it’s not just about technology – The five most common mistakes
Cyber security and risk posed by cyber attackers is an important concern for every organization.
Cyber security is an important concern for every organization. Daily occurrences demonstrate the risk posed by cyber attackers – from individual, opportunistic hackers, to professional and organized groups of cyber criminals with strategies for systematically stealing intellectual property and disrupting business. The management of any organization faces the task of ensuring that its organization understands the risks and sets the right priorities. This is no easy task in light of the technical jargon involved and the pace of change. Focusing on technology alone to address these issues is not enough. Effectively managing cyber risk means putting in place the right governance and the right supporting processes, along with the right enabling technology.
This white paper provides essential insights for management to get the basics right. It covers the world of cyber crime today, explores five common cyber security mistakes, explains the importance of customizing cyber security policies, outlines the critical dimensions of a strong cyber security model, and looks at key questions to help you navigate the “new normal” of cyber security.
How we can help?
Wishing to actively support you in activities regarding countermeasures and the effects of the materialization of the potential risks in the information technology environment, we present the main elements of our competence:
- Designing and analyzing the ICT security policies and information security
- Verification of compliance checks in the IT environment in relation to the relevant regulations
- Testing the security level of the internal control system as well as selected safeguard mechanisms
- Review of component configuration services
- Training in the field of Information Technology Security.
© 2022 Copyright owned by one or more of the KPMG International entities. KPMG International entities provide no services to clients. All rights reserved.
KPMG refers to the global organization or to one or more of the member firms of KPMG International Limited (“KPMG International”), each of which is a separate legal entity. KPMG International Limited is a private English company limited by guarantee and does not provide services to clients. For more detail about our structure please visit https://home.kpmg/governance.
Member firms of the KPMG network of independent firms are affiliated with KPMG International. KPMG International provides no client services. No member firm has any authority to obligate or bind KPMG International or any other member firm vis-à-vis third parties, nor does KPMG International have any such authority to obligate or bind any member firm.