Google
RSS Feeds RSS | Views on ITInews | contact | terms of use | privacy 
 


Editorial Categories:

FINANCIAL SERVICES
ADVISERS & BROKERS
BANKING & BONDS
BUSINESS MANAGEMENT
COLUMNISTS
CONSUMER AFFAIRS
CRIME & FRAUD
ECONOMY & GLOBAL
EDUCATION & TRAINING
ESTATES & WILLS
HEALTHCARE INSURANCE
INDUSTRY & LEGISLATION
INSURANCE
INVESTING
LEGAL AFFAIRS
LIABILITY INSURANCE
LIFE INSURANCE
MARKETING
PEOPLE & COMPANIES
POLITICS
PROPERTY
RETIREMENT PROVISION
REVIEWS
ROAD ACCIDENT FUND
SHARES & UNIT TRUSTS
SHORT-TERM INSURANCE
TAXATION
TECHNOLOGY
VIEWS & LETTERS


Forthcoming Events:

No Upcoming Events



Save by getting insurance quotes


Proudly South AfricanInforming Consumers and Financial Advisors since 1988 | Click Here to Advertise
Car, household, life and business insurance quotes

News Article : Digital business and digital adversaries
Category: Short-Term Insurance : Risk Management
Author:Edited by ITInews
Email:[email protected]
Posted:30 Sep 2015

 Email this article Comment on this Article  Print this article

Organisations must invest in three risk disciplines to increase trust and resilience

Running a digital business presents business leaders with an increasing level of complexity and new threats, and this requires a change in their approach to IT risk and cybersecurity.

"We are at the intersection of two major macro trends," said David Willis, Gartner vice president and distinguished analyst.

"The first is the transformation to a digital business. The second is the growing capacity and sophistication of digital adversaries to breach our defenses and cause major business disruptions in business operations."

Gartner analysts are discussing the new risks of digital business during the annual Gartner Symposium/ITxpo 2015, which is taking place in Cape Town until September 30.

CIOs are feeling the impact of the digital business age. Of the CIOs in the 2015 Gartner CIO Survey, 89 percent said that digital business would create new types and levels of risk.

"Inside and out, organisations are architected for agility and convenience, not resilience," said Mr. Willis.

However, the architectures that offer agility and convenience to enterprises and their customers are the same ones that attackers use to gain comprehensive access to enterprise systems once they get a foothold anywhere in the extended value chain.

"Regulatory compliance is insufficient to protect the business and its customers," said Mr. Willis. "The emerging standard is resilience, meaning the ability to recover rapidly from unforeseen circumstances."

Organisations must invest in three risk disciplines to increase trust and resilience

1.  Rearchitect the foundation to make people, processes and technology more resilient:

The transformation to full-scale digital business extends well beyond the IT organization, impacting the design and staffing of nearly every business function.

Its sheer scale underscores the importance of applying resilience to people, processes and technologies. In the next decade, trade-offs between convenience and resilience will be driven by increasing regulation.

Significant investment will be required throughout the organization to meet the challenge of resilience, a much higher bar than regulatory compliance.

2.  Increase awareness to build trust and resilience:

Most of the high-profile cyberattacks on organizations in recent memory began with a "phishing" attack — meaning a psychological manipulation — on a single enterprise employee, and only awareness on the part of the employee could have prevented the consequences.

"Technology alone cannot and will not protect the individual and the enterprise from carelessness or malicious actors," said Mr. Willis.

Personal awareness and responsibility with respect to safety and propriety must become priorities for the business. "Organizations must replace once-a-year compliance-oriented training with ongoing awareness campaigns."

"In addition, as the lines between personal and business technology are blurring, organizations should also consider extending protections to employees at home," Mr. Willis added.

3.  Extend governance to build trust and resilience throughout the ecosystem:

Malicious actors now include nation states, and no single organisation can successfully defend itself against such opponents, let alone against operational failures deep within the enterprise's ecosystem.

The risks to digital businesses go far beyond the walls of the enterprise, and governance processes must follow.

"Organisations must broaden and deepen internal governance, look to their ecosystems for additional support, and lend their influence to the creation of common defenses," said Mr Willis.

Trading security in favor of convenience for employees and customers is routine in this era.

Now the scale and ferocity of assaults on businesses — and the underlying interdependent complexities of digital business — should signal organizations to shift trade-offs toward resilience in both business and IT operations.

"Within a few years, regulation will speed that shift and organisations should expect the risks of digital business to increase in the meantime, and plan accordingly," concluded Mr Willis.

Comments:
There are no comments at this stage. Be the first to comment!
Please Login To Comment On an Article - Click here To Login

ITInews invites comments at the foot of each of its articles in which readers can respond freely - anonymously if they wish - to various topical issues and industry debates. However, comments submitted by readers that are defamatory or deemed, by the editors, to be racist or obscene will be deleted from the database. Furthermore, ITInews's editor would like to caution potential posters on its websites that while it welcomes robust debate, it will not hesitate to make the IP addresses of the authors of such defamatory statements available to the authorities, in the event of a court order compelling them to do so.



Get car, home, life and business insurance quotes in 3 easy steps



Join us today

Insurance Quotes


Car Insurance Quotes
Household Insurance Quotes
Business Insurance Quotes
Funeral Insurance Quotes
Life Insurance Quotes

Read the InsuranceQuotes Blog

Short-Term Insurance - Risk Management
Aviation
Claims
Commercial
Crime Statistics
Global Sustainability
Health & Accident
HomeOwner
Motor Vehicle
Ombudsman
Personal Lines
Regional Insurance Market
Risk Management
Short-Term Underwriting

More in Short-Term Insurance : Risk Management
Mounting Concerns about Failure of Kariba Dam as El Nino Bites
Region faces shutdown of hydro-electric plants and collapse of mining industry
Insurance heads speak out on climate change
A larger role for enterprise wide risk management
Profound changes coming to insurance industry
Growing systemic risk a crucial issue for the insurance industry
Companies must develop new risk management strategies to counter wider variety of threats
Deloitte chief says globalization has increased exposure of corporations beyond financial events
King II boost
Losses for companies that ignore the report
Catastrophe protection
Making sure you are covered

Join ITInews in supporting Helpnet.org.za

Available Recruitment:
No Vacancies Listed...


ITM Website Design Cape Town
Copyright © 2005 - 2015 ITInews Online Publications (Pty) Ltd. All rights reserved Insurance Times & Investments Online and ITInews. ..::ISSN 1995-1256::.. No part of the materials including graphics or logos, available in this Web site may be copied, photocopied, reproduced, translated or reduced to any electronic medium or machine-readable form, in whole or in part, without specific permission from ITInews Online Publications (Pty) Ltd. Distribution for commercial purposes is prohibited.