No longer a choice: Building a Cyber-aware Compliance Culture
We’re going to build systems, people are going to find vulnerabilities, we’re going to close those vulnerabilities and attackers will find new ones. And it’s just going to keep rolling on.
Business is at a critical point. Still reeling from the ongoing risk impact of the pandemic, you now have to prepare for an equally uncertain future. There is no more putting it off. We’ve seen the damage from an inadequate preparation for risk. It’s not pretty. But we’re learning.
Know the landscape
The big lesson of cyber security according to privacy and compliance expert Tim de Sousa, Senior Director – Technology at FTI Consulting is simple.“No matter how you set up your network, people will attack you. There will always be vulnerabilities – because the systems are designed by people and people are fallible.”
So, we have to get comfortable with the concept that data breaches are a reality of modern business. And as our work environment has changed, so has our risk environment.
What do we do? How do we prepare?
The best way to combat that is prevention, to proactively invest in securing your data and your business. It also means being prepared to react appropriately and quickly for when the worst happens. This whitepaper seeks to:
- Give an overview of the risk landscape with a primary focus on cyber security and data protection
- Highlight the imperative for business to adopt a cross - enterprise approach to their risk strategy that:
- Requires the creation of an accountable risk culture in every cell of its operations based on a strong training and education foundation
- Requires executive buy-in from the top down across all departments.
By using any Thomson Reuters or its related bodies corporate (TR) website, application, including mobile application ("app"), product, software or service or, otherwise, providing us with any of your (or any other person’s) personal information you consent to our collection, use and disclosure of your personal information in accordance with (and agree to the terms of) our Privacy Statement (which can also be found at https://www.thomsonreuters.com/en/privacy-statement.html or we will provide you with a copy of our Privacy Statement if you email us at firstname.lastname@example.org and request a copy). Do not proceed to use any of our websites, products or services or provide any personal information to us if you do not consent/agree to our Privacy Statement.