“Organisations need a cybersecurity strategy” – Kaspersky GM shares key insights on cybersecurity readiness with IIT Delhi MBA students

With the global cyber threat landscape constantly evolving and cyber-attacks becoming more sophisticated, organisations should make a cybersecurity awareness strategy a top priority. Cyber resilience built from an established culture of security awareness within an organisation delivers benefits beyond economic measures.

Kaspersky’s General Manager for the Indian region, Jaydeep Singh, elaborated on why organisations need to create and employ a cybersecurity awareness strategy during his guest lecture at the Indian Institute of Technology – Delhi. The talk, attended by more than 40 graduate students majoring in business management, underscored the need for companies to invest in cybersecurity awareness training for their employees.

Why do organisations need a cyber awareness strategy?

• We are on the radar of advanced and super persistent cybergangs.

• Successful attacks can result in financial damage and reputational damage.

• Negligent employees can be an organisation’s downfall.

In the past two years, over three-quarters (77%) of companies experienced at least one cybersecurity breach, with many enduring up to six in that period. The average cost of one incident is $337,561; moreover, nearly 40% of cyber incidents were caused by human error.

In India, 1 in 4 cyber incidents against businesses occurred due to employees intentionally violating security protocol.

Human negligence also plays a role. Nearly 3 in 5 cybersecurity breaches resulted from staff in India visiting unsecured websites. A quarter reported they faced cyber incidents because employees did not update the system software or applications when required.

What actions should organisations take?

• Raising cyber awareness within an organisation can help reduce the risk of data breaches. Once employees are trained to identify phishing, create strong passwords, manage and record data properly, and deal with social engineering tactics, they can promote the organisation’s cyber defence.

• Employing advanced technologies such as APT intelligence and Attribution Engine can further boost an organisation’s cybersecurity.

• Adopting advanced risk management enables an organisation to adapt to new risks and changing demands.

• Ensuring that an organisation is adhering to laws, regulations, and standards (local, state, national, and international) designed for protecting sensitive information and data is effective in diminishing overall compliance risk.

Learn more:

Kaspersky Academy https://academy.kaspersky.com/

Kaspersky Security Awareness https://www.kaspersky.com/enterprise-security/security-awareness

Kaspersky APT Intelligence Reporting https://www.kaspersky.com/enterprise-security/apt-intelligence-reporting

Some information on compliance https://www.kaspersky.com/blog/pii-protection-endpoint-cloud/43244/