When looking at a company’s risk, one of the most overlooked aspects is how it manages its informational security. In their most recent Data Breach Investigations Report, Verizon was able to classify 92% of the millions of breaches over the past few years into nine basic patterns. It would be a reasonable assumption that these nine patterns of attack would be the same across the business landscape. Unfortunately this is not the case as the sophistication of the attacks change depending on a company’s industry. As an example representing both the Financial and the Energy/Utilities Sectors, the highest type of breach was web app attacks. This occurred as the retail and Professional Services sector primarily faced Denial of Service (DOS) attacks.
For a risk management advisory firm such as ALS, this type of variance drives home the point that no company is the same and any organizational risk should undergo a holistic evaluation. With this in mind, over the next few weeks we will be putting together a 3 part series of blogs that will provide greater clarity on the type of cyber risks and attacks a company could face. This series will include mitigation strategies that can be employed, and how a company can look throughout the entire enterprise to protect their business information.
If you would like to discuss evaluating your company’s risk, including how to mitigate your Informational Security please feel free to Albert Sica.
