Thursday 27 October 2022

When securing our organisations, we have bountiful sources of best practice and a plethora of certifications and standards. But, how secure can we really be, and how can we properly manage resource, if we don’t understand the specific threats to our business, or how to respond when the worst happens? Over the course of this event, we looked at how organisations can stay up to date with current threats and create and rehearse useful incident response plans.

Threat intelligence can often seem daunting, but it’s critical that every organisation, no matter how big or small, is able to understand the threats they face and adapt their security accordingly. In today’s threat landscape, cybercriminals are proliferating and professionalising with increasing efficiency and ambition. With nation-state-funded cybercrime, constantly evolving ransomware gangs, and new vulnerabilities popping up daily, it’s vital we remain cognizant of where our focus is most required.

You can never truly guarantee you won’t be breached. But you can make sure you have the right personnel and procedures in place to effectively deal with a threat if and when it happens. Without a solid incident response plan and business practices that keep up with the modern threat landscape, the impact of losing customer data can be catastrophic and far-reaching. A decade-old general-purpose response plan just won’t cut it, and an untried or unrehearsed plan is just as useless.