BLACK HAT MEA – Riyadh – Wednesday, Nov. 15 – Cyber resilience is extra essential than ever, notably with the added dimensions of deepening geopolitical threats and dangers coming from new know-how like AI.
In a fireplace chat on the Black Hat Center East and Africa convention in Riyadh, Saudi Arabia this week, Reem Alshammari, cybersecurity chief for the Girls in Cyber Safety Center East group, mentioned that whereas operations have gotten extra digitized, cyber resilience should stay part of that.
“In cybersecurity, we preserve saying that it’s not the matter of will we be attacked, it is a matter of once we shall be attacked,” she famous. So, it is crucial to make sure there’s a capability to bounce again inside all layers of the group.
Arduous Occasions Create Resilience
Alshammari’s dialog companion, Abeer Khedr, CISO of the Nationwide Financial institution of Egypt, famous that the COVID-19 pandemic put resilience firmly within the limelight.
Khedr mentioned that particularly, the transfer to distant working was a brand new variable that companies have been “globally affected by that no one was actually accounting for.”
That kicked off a broader dialog on weathering challenges, she mentioned, so there is no such thing as a higher time than now to focus efforts on cyber resilience, notably when presenting to CEOs.
“Cyber resiliency needs to be owned on the high of the group and the senior administration degree,” she mentioned, and added that it should be built-in as a part of an organization’s operational technique. “This can be a journey of maturity, and for cyber resilience to work in my view, it needs to be embedded inside a company.”
She pointed to 2 roadmaps for attaining cyber resilience: one is Accenture’s “State of Cybersecurity Resilience” report, and the opposite is BS 65000, which was developed by the British Requirements Establishment (BSI) as a code of observe for organizational resilience. The latter was revised final yr from its 2014 authentic model, and offers companies with steerage and proposals in attaining resilience all through their group.
Whereas these might be useful to plot out one’s path and steps ahead, Khedr mentioned to do not forget that cyber resilience is just not an achievement test field, and isn’t a journey that may be achieved in a single day.
