Today, September 15th, 2022, we proudly announce the launch of UDT’s very own Podcast: BEYOND CYBER. Beyond Cyber is a show where we talk to industry leaders from diverse backgrounds about cybersecurity, technology and beyond, to keep up to date on what is happening in the world right now.
We open #BeyondCyber with a special guest: Mike Sanchez, Chief Information Security Officer at UDT; who is going to be giving us his input about “Top Things Everyone Needs to know about Information Security in 2022”.
See the full episode Below:
1. Cybersecurity Solutions
Many companies think that they put together a good portfolio of Cybersecurity Solutions and services in a programmatic way that is aligned to a businesses’ risk objective and their overall business requirements. Maybe, it has technology solutions in there, but it is important to add the Governance and oversight activities required to roll up an information security program.
2. Executive Buy-in
A recommendation from Mike Sanchez is that it is important for businesses to buy from Executive levels: Owner of the Company, CEOs, Manager levels. If this is not happening, it is going to be challenging to get a good information security program in place. To close a sale, you must be able to communicate in a non-technical way to the “guy that writes the check”. Because he may not understand all the technological aspects, but this person understands THE IMPACT NOT DOING SOMETHING WILL HAVE IN THE ORGANIZATION. If that message gets across, we are on the other side of the spectrum.
3. Where to start?
Something companies tend to deal with is that they may know all the things that I need to be doing, but most of the time do not know where to begin, and what takes priority. Businesses do not have a way of prioritizing what fixes they are going to apply, so to identify those fixes, the first thing to understand is what are the main threats.
4. Threats
To be prepared for any possible threats that are common in every single company: it is important to make sure to have backups, secure all the mission-critical systems, close the holes in a vulnerability, so, businesses can fix these problems in accordance with the threats that they might face every single day.
5. Phishing Attacks
E-mail phishing attacks are one of the most common threats every single day, it is a numbers game, because people who tend to eject these attacks usually send a thousand of e-mails hoping to compromise a user and they typically do, and that is not going to go away anytime soon. One possible solution might be to prepare employees, users, and everybody who has access to the systems of the company. They always need to be aware of what is new in the marketplace, or in the industry, what is being used to target them; how to spot a misspelled URL address or domain name, if you see a link in a not trusted sender DO NOT CLICK IT.