Beyond Cyber Episode 1: Top things Everyone needs to know about information security in 2022

We open BeyondCyber with a special guest: Mike Sanchez, Chief Information Security Officer at UDT; who is going to be giving us his input about “Top Things Everyone Needs to know about Information Security in 2022”.
Facebook
Twitter
LinkedIn

Today, September 15th, 2022, we proudly announce the launch of UDT’s very own Podcast: BEYOND CYBER. Beyond Cyber is a show where we talk to industry leaders from diverse backgrounds about cybersecurity, technology and beyond, to keep up to date on what is happening in the world right now.

We open #BeyondCyber with a special guest: Mike Sanchez, Chief Information Security Officer at UDT; who is going to be giving us his input about “Top Things Everyone Needs to know about Information Security in 2022”. 

See the full episode Below:  

1. Cybersecurity Solutions 

Many companies think that they put together a good portfolio of Cybersecurity Solutions and services in a programmatic way that is aligned to a businesses’ risk objective and their overall business requirements. Maybe, it has technology solutions in there, but it is important to add the Governance and oversight activities required to roll up an information security program. 

2. Executive Buy-in

A recommendation from Mike Sanchez is that it is important for businesses to buy from Executive levels: Owner of the Company, CEOs, Manager levels. If this is not happening, it is going to be challenging to get a good information security program in place. To close a sale, you must be able to communicate in a non-technical way to the “guy that writes the check”. Because he may not understand all the technological aspects, but this person understands THE IMPACT NOT DOING SOMETHING WILL HAVE IN THE ORGANIZATION. If that message gets across, we are on the other side of the spectrum. 

3. Where to start?

Something companies tend to deal with is that they may know all the things that I need to be doing, but most of the time do not know where to begin, and what takes priority. Businesses do not have a way of prioritizing what fixes they are going to apply, so to identify those fixes, the first thing to understand is what are the main threats. 

4. Threats

To be prepared for any possible threats that are common in every single company: it is important to make sure to have backups, secure all the mission-critical systems, close the holes in a vulnerability, so, businesses can fix these problems in accordance with the threats that they might face every single day. 

5. Phishing Attacks

E-mail phishing attacks are one of the most common threats every single day, it is a numbers game, because people who tend to eject these attacks usually send a thousand of e-mails hoping to compromise a user and they typically do, and that is not going to go away anytime soon. One possible solution might be to prepare employees, users, and everybody who has access to the systems of the company. They always need to be aware of what is new in the marketplace, or in the industry, what is being used to target them; how to spot a misspelled URL address or domain name, if you see a link in a not trusted sender DO NOT CLICK IT. 

Focus time, money, and effort on what really matters

Let’s build success together. 

More to explore

Cybersecurity Vocabulary

Improve Your Cybersecurity Vocabulary

This short glossary of cybersecurity terms is a simple way to raise awareness for terms like “zero-day attack” that employees and executives outside of cybersecurity should know about.

Cybersecurity

Considering Cybersecurity Insurance?

Cybersecurity Insurance is not easy to obtain. It’s expensive, for one, and an organization’s lack of security measures have made insurers even more hesitant to offer coverage. Here are five security considerations that are in-line with cyber insurance requirements to help reduce cyber risk.

Experiencing a security breach?

Get immediate assistance from our security operations center! Take the following recommended actions NOW while we get on the case:

RECOMMENDED IMMEDIATE NEXT ACTIONS

  1. Determine which systems were impacted and immediately isolate them. Take the network offline at the switch level or physically unplug the systems from the wired or wireless network.
  2. Immediately take backups offline to preserve them. Scan backups with anti-virus and malware tools to ensure they’re not infected
  3. Initiate an immediate password reset on affected user accounts with new passwords that are no less than 14 characters in length. Do this for Senior Management accounts as well.

Just one more step

Please fill out the following form,