The CyberSecurity Challenge!

I recently read this article in ZDnet, concerning the next cybersecurity awareness quagmire for business in the digital age.  And although I agree with all of the points I would like to go further and discuss only 2 of them.

Point seven, concerning the cloud.   The cloud seems to be the driving force for most business infrastructure and like anything on the Internet once it becomes the flavor of the month then it becomes the open target for the cyber criminal.

The cloud and cloud based technology is a serious business driver, it can reduce costs and it can increase productivity, but if embraced wholeheartedly without looking at other business requirements or studying the inherent dangers then you could be exposing your business to risks that would normally be unseen.

There are a number of points that I consider important when using cloud based technologies, well three really.   The connection at both ends, how secure and stable is the data centres connection, how secure and stable is your connection to the Internet and finally how secure and reliable is the connection that your staff will be using when on the road.

The second is what level of encryption of the information in transit and at rest will be imparted on your data, and finally how secure is the data centre facility.   These three point, from a technical focus are what your business should base their decisions on.   The opportunity to grab the cloud technology carrot are very real but do your homework!

The second point from this article is BYOD is going to get messy.   Not just messy, but really, really messy.    In larger organisations it is going to get down right unmanageable if not done correctly.   Yes there are management tools out there but invariably issues will slip through the defences, as well as the insecure and unsecured environment that is hand held device operating systems, business will be in for a torrid time.

Roger Smith, is an educator. Teaching students at ADFA (UNSW) and showing them how vulnerable they are to cybercrime.

He is also CEO at R & I ICT Consulting Services Pty Ltd, an Amazon #1 author on Cybercrime and founder of the SME Security Framework. He is a Consultant who specialises in inexpensive and highly effective security strategies for small and medium businesses and not for profit organisations.

He has developed and authored the SME Security Framework and the Security Policy Training Course which are considered to be the definitive guides to helping SME's protect their organisation using the principles of Technology, Management, Adaptability and Compliance.