Big Business Faces Cyber Challenge

More recently, Lenovo customers were surprised to learn that their computers had been preloaded with Superfish software that created security vulnerabilities.

According to Paul Rohmeyer, department chair of the Master of Science in Information Security and Assurance at Embry-Riddle Aeronautical University — Worldwide, organizations must look at breaches from two major perspectives – vendor and systems / technology.

In evaluating vendor-related matters, Rohmeyer said companies need to ensure business partners and service providers are taking appropriate steps to protect their own networks and, therefore, prevent breaches that may affect your company’s information.

One way to accomplish this is by making information security a topic of discussion when engaging with a vendor, he said. It will take effort from both parties to ensure that information security remains intact throughout the life of the relationship – and beyond.

Internally, businesses also need to view information security from a systems/technology perspective. Being aware of flaws and potential flaws in the technologies they use and staying vigilant to maintain a state of security are key to a safe and secure enterprise.

Rohmeyer believes companies must have the organizational capabilities to detect attempted and actual breaches and respond to them – regardless of the root cause. An inability to detect breaches is a significant problem.

To help executives combat these challenges, the U.S. Department of Homeland Security has developed a Cyber Risk Management Primer for CEOs. Companies such as Raytheon also offer cybersecurity insight and enterprise solutions.