The Clearsale Blog

CIOs need to create teams of cybersecurity experts

CIOs need to create teams of cybersecurity experts

Recent global incidents around the world has shown COVID-19 hasn’t stopped cybercriminals. The pandemic has made them bolder and they’ve stepped up their activities – be it attacks on corporations, governments, SMEs and home offices. The cyber threat landscape is one that continues to grow and evolve.

In corporations, while CIOs play a critical role in the information security (InfoSec) of a company, the risk management space needs to be spearheaded by a team that has cybersecurity imprinted in their DNA.

Traditionally, the role of cybersecurity has fallen to the CIO for obvious reasons — it’s a very technical role falling under the purview of the technical leader.

However, the evolution of the fraud ecosystem has outgrown this categorisation and should stand on its own as a research, analysis and forecasting department under a CISO, said Filippe Farias senior director of software engineering at ClearSale.

“Many businesses may not have the capabilities or resources needed to create an entirely new department,” he said. “A CIO should understand the importance of bringing on a professional that has the ability to live and breathe the risk mitigation activities that are ever-evolving and expanding across an entire organisation.”

Farias told CIO Tech Asia, when many countries instituted strict lockdown orders to try and curb the spread, a lot of organisations needed to quickly shift employees to a work from home environment.

“This created a tendency for personal use of company resources, which inevitably increased exposure to possible threats,” he said. “As those orders are starting to loosen and employees are returning to the workplace, the talk of the potential for a second wave means that it’s vital that CIOs prepare now to face the same threats.”

He said a good place to start is to consider these questions:

  • Connectivity: Is our way of ensuring a secure connection sufficient and scalable?
  • Awareness: Is our security awareness training updated to the new conditions?
  • Support: Is our Helpdesk is enough to support our new reality?

“My advice comes down to two major considerations that I’m not sure most CIOs would put at the top of their list – but when it comes to cybersecurity, partnership and culture are the forces that can help drive InfoSec efforts company-wide,” Farias said.

He suggests CIOs think about:

 

Partnership

We believe that the best way to face these challenges is through partnership, to join market players that implement the best practices and help you to be in more than one place at the same time. This is especially important for any CIO that is directly running cybersecurity efforts. In our experience, the support of Microsoft and Citrix has been essential to ensure the tranquility of our collaborators in these difficult times.

 

Culture

The InfoSec sector tends to come off as cold and unfeeling, as if we are just around to hinder all the conveniences of a workforce. Knowing this, it’s important to make cybersecurity a part of the company culture as a whole. For example, we have frank conversations with our teams, ensuring that we listen to all their concerns before we make decisions on how to proceed with our company guidelines. Allowing staff to feel a part of our decision-making process changes how we work together and inevitably makes our initiatives much more efficient to implement.

“I have heard these sorts of rumors going around in our industry, but I’m not sure how much stock I put in them,” Fairas said. “I think there are two issues that can lead to this idea of a “skills shortage” in InfoSec – one is that cybersecurity professionals are either highly trained and educated, or self-taught without the necessary “formal” education.”

According to Farias filling entry-level roles with the former group is very difficult, as they expect much higher salaries than are being offered and filling them with the latter group is hindered by an organisation’s minimum education requirements.

“There is a lack of these entry-level jobs being filled, and I think this is where CIOs can take the opportunity to think outside the box,” he said. “It’s less expensive overall to hire at a junior level and train staff to do the job required than it is to recruit a more mid-management or senior candidate.”

 

Original article at: https://ciotechasia.com/cios-need-to-create-teams-of-cybersecurity-experts/

You may also like

The customer experience: How the pandemic changed ecommerce

The customer experience: How the pandemic changed ecommerce

The pandemic changed how customers viewed shopping and spending. But as the world moves into post-pandemic, retailers are concerned with creating a positive customer experience. Rafael Lourenco,..

Cross-Border Ecommerce 2021 Report With Digital Commerce 360

Cross-Border Ecommerce 2021 Report With Digital Commerce 360

Cross-border ecommerce saw tremendous growth in 2020 and is poised to continue on that trajectory. In fact, online retail sales across the globe increased 24.1% in 2020, reaching $4.29 billion.

In..

An Inside Job at the Post Office (Pt.2)

An Inside Job at the Post Office (Pt.2)

In part two of our conversation, Bruno Farinelli from ClearSale gives merchants advice on how to sell in risky markets, avoid chargeback induced PR nightmares, and avoid the most common mistake he..

Customer Experience: Online vs In-store

Customer Experience: Online vs In-store

A1 Retail asked a range of industry experts how retailers can ensure that consumers are receiving the same level of personalised customer experience online as they would receive in-store.

Why Ecommerce Merchants Should Monitor the Amazon-Shopify Battle

Why Ecommerce Merchants Should Monitor the Amazon-Shopify Battle

There’s a behind-the-scenes battle going on between the two biggest ecommerce platforms in the U.S. that could have big implications for merchants. After much media speculation at the end of 2020..

Cross-Border Shopping Comes With Merchant Concerns

Cross-Border Shopping Comes With Merchant Concerns

THE PERILS OF FRAUD

International fraud protection leader ClearSale released an extensive analysis of its five-country study on consumer attitudes commissioned from Sapio Research titled, 2021..

Climbing out from COVID-19: What retailers need to do moving forward

Climbing out from COVID-19: What retailers need to do moving forward

The spring of 2021 is quite different than 2020 for the retail sector as COVID-19 is no longer shuttering as many stores, forcing layoffs and or triggering as many bankruptcies. But retailers..

An Inside Job at the Post Office (Pt.1)

An Inside Job at the Post Office (Pt.1)

What happens when the post office is in on the con? In part one of our conversation with Bruno Farinelli from ClearSale, he shares incredible stories of inside fraud jobs at the post office,..

Critical Pandemic Lessons in Mobile Payment Fraud Prevention

Critical Pandemic Lessons in Mobile Payment Fraud Prevention

As the world pivoted to online shopping, work, and learning last year, the timeline for mobile usage growth jumped ahead by two to three years in the first half of 2020. Many retailers rolled out..

Want to write
for our blog?

Please review our writers' guidelines
https://www2.clear.sale/press/clearsale-guest-blog-guidelines
and then email guestwriter@clear.sale with your pitch!

Subscribe to our blog