Book Image

Building a Cyber Resilient Business

By : Dr. Magda Lilia Chelly, Shamane Tan, Hai Tran
Book Image

Building a Cyber Resilient Business

By: Dr. Magda Lilia Chelly, Shamane Tan, Hai Tran

Overview of this book

With cyberattacks on the rise, it has become essential for C-suite executives and board members to step up and collectively recognize cyber risk as a top priority business risk. However, non-cyber executives find it challenging to understand their role in increasing the business’s cyber resilience due to its complex nature and the lack of a clear return on investment. This book demystifies the perception that cybersecurity is a technical problem, drawing parallels between the key responsibilities of the C-suite roles to line up with the mission of the Chief Information Security Officer (CISO). The book equips you with all you need to know about cyber risks to run the business effectively. Each chapter provides a holistic overview of the dynamic priorities of the C-suite (from the CFO to the CIO, COO, CRO, and so on), and unpacks how cybersecurity must be embedded in every business function. The book also contains self-assessment questions, which are a helpful tool in evaluating any major cybersecurity initiatives and/or investment required. With this book, you’ll have a deeper appreciation of the various ways all executives can contribute to the organization’s cyber program, in close collaboration with the CISO and the security team, and achieve a cyber-resilient, profitable, and sustainable business.
Table of Contents (14 chapters)

Varying your training

As seen in Noordin’s approach, building a culture is not something that just happens. It does not just grow organically. It requires investment, commitment, and nurturing. The end goal is a sustainable security culture that is transformative.

One way to do this is to vary your training methods to engage and help staff retain a security mindset. Before implementing any change, it is always important to ask the right questions and understand where your team is and how they behave. Leverage your CHRO and HR team to shape the delivery of your training. It is essential to tailor the training, from its content to its approach, in alignment with the nature of your staff’s roles, from the department they are in to the level of access they have, their grasp of security knowledge, and the tools they use. Effective training is not always one-size-fits-all.

Stories of how human error has resulted in a company’s downfall can make it easier for staff...