Sample Cyber Security Update For Management (COVID 19)

During the COVID 19 crisis many organizations had to shift to Work From Home in a very short notice. During this time it is very important to keep your management and team members informed. Here is a sample cyber security update for your management during the COVID 19 pandemic.


Sample Cyber Security Update For Management
I wanted to keep you all updated on the progress on cyber security posture of "Your Company" and also the overall industry. Please find below some of the key updates:

Rapid rise in cyber attacks in recent times

  • Covid19 has caused organizations to move to work from home or go online without adequate preparation and that has caused rapid change in attack surface for which organizations are not prepared. We had been relatively well prepared with (please put in the complete list) VPN, DLP, Red teaming/Pen Test and multiple other security programs in place.

Hackers are capitalizing the fear of Covid19 for social engineering

  • There is a rapid rise in social engineering attacks leveraging Covid19 related messages. We had been preparing ourselves through regular awareness campaigns. However we need to be continuously aware since all it takes is a single lapse in judgement to cause a breach.
Smooth work from home transition & crisis response
  • We had seamlessly moved to work from home with a decent level of security in place including DLP, VPN,  Bitlocker encryption, multiple awareness campaigns on secure work from home. Our BCP preparation and security preparedness came handy in this situation.
Security Technologies and Programs which we executed
We have executed multiple security programs in the last couple of quarters. Following are some of the top ones (here is a sample list that are must have)
  • Red teaming and attack simulation
  • DLP
  • Bitlocker encryption
  • Security awareness campaigns
  • Third party risk management
  • Risk assessment for Rich Relevance
  • Vulnerability management program
  • Security program/architecture review
  • Cyber crisis drill
  • Security rating
  • ISO 27001
  • Backups including offline backup of Internal IT
  • Cyber Insurance etc
  • SOC/SIEM to detect attackers
  • PIM/PAM
  • WAF
Security Programs Going forward
  • Please include some of the key areas we are focusing on includes
  • Ongoing security management for all implemented solutions
Being paranoid and staying safe
We are facing an unprecedented crisis which the world has never seen before. We need to stay paranoid and agile to respond and recover from any crisis. The largest of the organizations continually faces breaches. We must remain paranoid.
Requests for all of you
  • Management personnel are being widely targeted. Please remain on vigil and observe security best practices and maintain security hygiene
  • Please do let me know if you notice any possible security weakness or alert us if you find anything suspicious. 
  • If you have any ideas please do share with our security team
Please feel free to reach out to us anytime. Stay safe.

Views: 84

Join the Discussion ...

You need to be a member of CISO Platform to join the discussion!

Join CISO Platform

FireCompass

Forum

CISO as an enabler

Started by Maheshkumar Vagadiya Jul 30. 0 Replies

Share the instances where you were able to convince the Executive management /board that CISO function is enabler rather then a hindrance.Thanks youMaheshContinue

Has Anyone Evaluated Digital Signature (like Docusign)?

Started by CISO Platform. Last reply by Yogesh Nov 19. 2 Replies

(question posted on behalf of a CISO member)Has anyone evaluated digital signature (like Docusign), any specific risk/ security areas to be looked into while finalising a vendor? Any and all inputs will be very much appreciated.Continue

What are your strategies for using Zoom in your organization after recent vulnerabilities in news about Zoom platform?

Started by CISO Platform. Last reply by ANAND SHRIMALI May 20. 4 Replies

(question posted on behalf of a CISO member)What are your strategies for using Zoom in your organization after recent vulnerabilities in news about Zoom platform?Related Question: …Continue

[Please Suggest] Corona Virus: Security advisory for work from home

Started by CISO Platform. Last reply by Bhushan Deo Mar 20. 12 Replies

(question posted on behalf of a CISO member)Due to CORONA virus most of the organizations are allowing their employees to work form home.Has any one issued security advisory for work from home ?Continue

Tags: #COVID19

Follow us

Contact Us

Email: contact@cisoplatform.com

Mobile: +91 99002 62585

InfoSec Media Private Limited,First Floor,# 48,Dr DV Gundappa Road, Basavanagudi,Bangalore,Karnataka - 560004

© 2020   Created by CISO Platform.   Powered by

Badges  |  Report an Issue  |  Privacy Policy  |  Terms of Service

/* */