It is only a matter of time before an organisation experiences some kind of cyber incident. In this conversation with IT and cyber security expert, Niel Harper, we discuss, among other things, how the threat landscape is changing, what should be included in a good Cybersecurity Incident Response Plan, whether cyber insurance is a good idea, and what is the top cybersecurity concern businesses face today.
This episode is also available in Apple iTunes, Google Play Music and on Stitcher!
Over the past few week, vigilance with respect to cyberthreats and cybersecurity has become even crucial as countries tries to manage the rate of infections of the COVID-19, also known as the novel coronavirus. Increasingly, organisations have been relying on ICT in order to implement work at home and telework arrangements for their staff, which essentially, may open up their networks up to broad vulnerabilities, to which they have not been previously subject.
In addition to the challenges of securing a network that might not have been initially configured to be accessed remotely, and/or the threats posed by employees accessing an organisation’s resources on unsecured devices, such as their home computer, one begins to get an idea of the nightmare that could be occurring, thanks to the current dispensation. Further, the network monitoring capability, which would usually be the remit of the organisation’s IT department, may need to be revisited – both in terms of function and resources.
Hence, although we might not be able to speak to the specific threats that could be experienced or recommendations that could be implemented, we still thought it opportune for us to continue our longstanding conversation on cybercrime and cybersecurity, and to secure additional views and insights from an expert.
Our podcast guest
Our guest is no stranger to our Expert Insight series, but this is first time being interviewed via our podcast format. Niel Harper, who hails from Barbados, is an internationally-recognised subject matter expert in cybersecurity, information assurance, IT risk management, cyber law and policy. He is also the Founder and Chairman of the Octave Consulting Group, which works in the areas of ICT policy, telecoms regulation, cybersecurity risks and IT-enabled business issues.
In addition to all of this, currently, Niel is the Chief Information Security Officer of the United Nations Office for Project Services (UNOPS). UNOPS is one of the operational arm of the United Nations, which through the programmes and projects its supports, aim to foster peace and security, along with humanitarian and development solutions.
As has been past experience, Niel does not disappoint in the insights and advice he shared, and we covered topics for which practical recommendations could be considered. Moreover, it is important for organisations to disabuse themselves of the notion that all cyberattacks can be prevented, or that all cyber incidents can be avoided. It is only a matter of time before an attack is successful; and so it perhaps even more important for organisations to be proactive in not only detailing their recovery plans, but also ensuring that they are adequately resourced to implement them. Hence key questions that were posed to Niel during the course of our conversation included the following:
- What have been the most prevalent types of threats and incidents you have been observing and/or experiencing?
- For a few years now, mobile devices have been seen as a major security risk. What steps could users take to better manage that risk?
- What might be some of the best anti-virus/malware removal software products on the market today?
- What is the top cybersecurity concern businesses face today?
- In broad terms, what do Cybersecurity Incident Response Plans should they entail?
- Is cyber insurance a good idea, and what should an organisation look out for if they need to buy cyber insurance?
- Reportedly, there is a growing demand for cyber security professionals. What have been your observations? Do you agree? And how might that gap be closed?
- Finally, what might be some key things organisations should be doing in 2020 to improve their network/IT security?
We would love to hear from you!
Do leave us a comment either here beneath this article, or on our Facebook or LinkedIn pages, or via Twitter, @ICTPulse.
Select links
Below are links to some of the organisations and resources that either were mentioned during the episode, or otherwise, might be useful:
- Niel Harper
- United Nations Office for Project Services (UNOPS)
- Octave Consulting Group
- Organisation of American States (OAS), State of Cybersecurity in the Banking Sector in Latin America and the Caribbean
- New York Times article, A Cyberattack Hobbles Atlanta, and Security Experts Shudder
Image credits: Pete Linforth (Pixabay) ; N Harper
Music credit: Ray Holman
—————