Every business is worried about cyber security and how such breaches hinder their daily business operations. Verizon and Deloitte have formed a holistic partnership in order to help keep their customers' data safe. Verizon's Bob Vescio states that more organizations are using 'gut-checking intuition' as a strategy but that alone is not working. The bad guys keep winning, but why? He argues that everyone is doing cyber security around compliance, which by definition, is "intuition by a group of people." Vescio also stresses that over ninety percent of companies aren't taking the necessary steps (or are doing so partially) to keep their companies safe from cyber attacks. Companies tend to focus on minute things based on industry hype more than anything. Deloitte's Emily Mossburg joined Vescio on stage and discussed data recovery in the instance of an attack. What can companies do about data recovery? Mossburg says there are three things companies can do: 1) Be secure, 2) be vigilant by putting controls in place and understand what "normal" looks like regarding network patterns, user access and transactions so you can easily notice when something abnormal is happening, and 3) be resilient. This relates to preparing for, responding to and recovering from a cyber attack. Companies, Vescio states, should develop a risk model based on four landscapes: Business impact, threat, asset and control. By populating all four together, companies ought to have a clearer picture, or a heat map, of where their security risks are and that should drive the strategy to fight cyber attacks.
—C-Suite TV