14 September 2016

  |  CBI Updates Team


'Employees can be the biggest threat to a firm's cyber security'

How important is company culture to your cyber security?

One of the biggest threats to a firm’s cyber security is the people working within it, business leaders were warned.

Dineshi Ramesh, Board Intelligence’s advisory partner, said employees need to understand the threat their company faces from attacks - but also the vital role they play in protecting sensitive information.

She told the CBI’s Cyber Security Conference that in addition to keeping data safe and making sure the appropriate firewalls are in place, cyber security is also about “the way our people behave, the way we look after our IT equipment when we’re out of the office and down the pub”.

Ms Ramesh argued that in addition to making cyber security easy for staff, such as providing them with encrypted passwords, they need to know “there are consequences” if they do not support company policy on it.

She also urged company directors who are not cyber security savvy to invite that capability on to the board.

Steve Rumble, BDO’s technology risk partner, added that regaling staff with “war stories” – informing them about serious cyber breaches that have happened to other similar firms –  is another way of getting them engaged.