Security: How to Protect Against Cyber Crime

The bad guys are everywhere. 

They want our identity, our data, our cash. 

This is nothing new of course – global corporations now spend tens of millions on cyber security compared to just thousands, say, 20 years ago. 

However, no matter what we put in their way, it seems the criminals are always several steps ahead.  

Who would have thought Hacking as a Service (yes, you read that right) would be a thing? 

But just hop on the dark web and you can quickly find a ready supply pool of the most technologically-savvy hackers in the world only too keen to do a ludicrously-lucrative pay-as-you-steal deal with criminal gang customers.  

It’s why enterprises big and small must do all they can to protect their systems and their workforces from ransomware, scamming, phishing, spoofing and whatever new assaults are doubtless already in the works. 

Picking the right expert partner to help in the fight could be the best decision an enterprise ever makes.  

“Security is no longer a set of products or features; it has to be at the centre of every enterprise’s culture,” says Vincent Lomba, Chief Technical Security Officer at global enterprise communications solutions provider Alcatel-Lucent Enterprise, who eats, sleeps and breathes the issues.  

“Vulnerability is constantly increasing and it’s impossible to ever be fully secure. All we are able to do is manage risk and balance that risk against the likelihood of an attack. It is possible to minimize the potential likelihood and of course you are far less vulnerable than if you do nothing. 

“However, it’s not enough to simply have the relevant security accreditations. We need to go deeper. So enterprises must always be learning; they must always listen to the experiences of others and they must always watch the market for technological advances. 

“Right now, those responsible for security inside an enterprise must be able to say: ‘OK, I’ve done my job. I don’t know what will happen tomorrow, but at least I know that I have the maximum protection today.” 

Most of us living much of our lives online has certainly helped. 

We have become more security-aware and doing the basics such as password management and being vigilant whenever we are connected comes naturally. 

But, for enterprises, the human factor also represents a big part of the ongoing risk.  

“The technology is easy to get right,” says Lomba.  

“You know how to securely manage connectivity and how to set up a proxy and all of those other things. But the human factor? Yes, that is definitely the most difficult part. 

“All employees must be security-aware but they must also have the necessary day-to-day vigilance. Employers can never be sure that all of their people are at that level so it should be part of the daily discourse. 

“That should mean regular training and an acknowledgment by the employer that employees do not have all of the understanding. Employees are asked to contribute, but we cannot expect them to be solely responsible.” 

There is of course a financial dynamic to all of this too.  

A data breach can destroy the reputations of even the world’s most respected brands. And a GDPR breach can result in a fine equal to 4% of revenue.  

Also, customers – particularly in the public sector – are reluctant to do business with suppliers that are unable to prove they take security seriously. 

“The financial implications have certainly had an impact on security considerations,” says Lomba. 

“We have seen serious data breaches that have completely broken businesses. In addition, some insurance companies won’t provide cover if you do not have optimum security measures in place. 

“And it is now completely normal for potential new customers to carry out a supplier security audit prior to procurement. 

“Taken together, it is easy to see why all these issues should ensure security is at the top of every enterprise agenda.”