Information security checklist
Today we discuss about a trendy topic in the IT consulting business today: Tech assessments need business input. 2020 is the information security year. GDPR, fines for personal info security breaches and so on. Security and personal data its a very big topic for any CEO.
A simple info any CEO should know about cybersecurity: According to most cybersecurity surveys, over 60% of all data breaches originate from unauthorized access from one of your current or former employees, or third-party suppliers. It is vital that CEOs establish the appropriate cybersecurity “tone at the top” for their respective organization, regarding the importance of information security and how cybersecurity is everyone’s shared responsibility in a truly digital world. Establishing an organizational “culture of cybersecurity” has proven to be one of the best defenses against cyber adversaries. It is the people, not the technology, which can either be an organization’s greatest defense, or its weakest link against a cyber-attack.
Any business should want to have an IT consultant! Some technical issues or crisis may be too overwhelming for an internal IT department to solve. Sometimes, hackers breach the systems in a way that internal experts cannot reverse or contain the damage. Natural disasters such as floods or fires may affect technology in a way that only experts can resolve. In such cases, a business cannot avoid hiring experts to restore normalcy and prevent a similar crisis in the future.
Recent incidents should serve as sufficient motivation: UK National Health System – 16 hospitals’ systems were completely shut down by the WannaCry virus, tallying a cost of 100M in 2017. Atlanta – the city government was crippled by ransomware, disabling the city’s ability to operate or fund services in 2018. Marriott/Starwood – 500 million customer records breached in 2018, including birthdates and passport details. Capital One – 100 million customers credit card details and histories were breached in July 2019. See more info on IT security checklist.
The right approach to training – whatever that means in your organization – is worthless if your sales staff are unable to mentally engage due to short-term pressures. Mandatory webinar training delivers ZERO benefits if your sales staff are all checking email and following up with customers on their 2nd screen during the session. I’m a big believer in face-to-face training, (possibly even 1-on-1 uber-tailored training depending on the economics), but even those approaches can fail if their focus is so set on this month or quarter that they can’t spend mental energy envisioning a better way to operate long-term.
We keep this level of engagement throughout project teams. We utilize only skilled staff with actual real-world experience to execute projects. Our larger competitors recruit heavily from universities and have first year associates out billing clients within a month. Our bill-rates are significantly lower across the board for all seniority levels and skill-sets, as we don’t have to carry the overhead of those larger firms. (We don’t sponsor pro golfers or tennis championships, etc…) See even more information at Innovation Vista.