As your business concludes its fourth quarter for 2013, 
you’re likely undergoing yearly reflections. Among operational evaluations, the issue of cybersecurity is likely to have come up. If your organization depends on cloud technologies, maintaining superior cybersecurity practices is top priority, especially for IT support and risk managers. Revamp the security of your organization by identifying threatening loopholes and implementing cloud solutions as your company’s No. 1 new year’s resolution.
Cybersecurity Summit
Cybersecurity threats aren’t taken lightly, insomuch that executives and representatives from companies such as Verizon Communications, Triumfant (a malware detection and remediation company), LifeLock (an identity theft protection company), and SINUT (a network dedicated to defeating cybersecurity threats) joined to speak about emerging threats and risk factors at the 2013 Cybersecurity Summit this past fall.
Along with an impressive list of notable speakers, a plethora of sponsors supported the event, including Cloud Security Alliance, Guidepoint Security, McAfee and Information Security Solutions. Industry leaders met to address cybersecurity challenges, provide expert education and collaborate on security strategies to solve vulnerable infrastructures. Major discussions that your own IT team should be aware of included enterprise mobile security and BYOD, cyber defense, cybersecurity in a social world and cyber policy.
Bring Your Own Security (BYOS)
While analyzing the security and privacy of your data and the cloud, think about whom you’re protecting your organization against. Hackers, malicious competitors and even unintentional cloud service provider mistakes can threaten your business. Computerworld’s Steve Pate, Chief Architect at HyTrust, advises organizations that even though you’re trusting a cloud service provider (CSP), you’re ultimately responsible for the security and privacy of your data. Check your CSP contract and service level agreements (SLA) for availability, disaster recovery, data privacy, integrity and breach remediation. For example, you can encrypt your data in the cloud, but make sure to keep the encryption keys. Stay protected by thoroughly reading the SLA, knowing in detail what your CSP is committed to securing and implementing encryption.
Bring Your Own Device (BYOD)
Organizations are adopting the BYOD trend for increased productivity and greater innovation, yet as employees rely on the cloud for storage and connection, risks for BYOD-ers emerge. Since an employee-owned mobile device can be as devastating as a state-of-the-art malware attack, weigh the pros and cons of your BYOD policy.
CRN highlights these BYOD risks your enterprise could face:
- Employees could be technologically savvy enough to jailbreak and eliminate security restrictions
- Employees can use mobile apps to break through network controls and access confidential corporate information
- Sensitive data can become exposed as a result of failed software security updates on devices
- Connecting to open wireless points can impose attack vulnerabilities on devices
- Cloud-based services can be a source of data leakage without controlled restrictions and enforcement mechanisms
- Lost and stolen personal devices threaten company data and information
Review your cloud storage system and cybersecurity strategies to determine weaknesses and whether or not your IT infrastructure is in need of updates for a brand new year and first quarter. For example, you may need to install encryption or a way to remotely wipe out corporate data if a personal device used for work is lost or stolen. Ensure your business has protection and response plans instated for 2014.
