Write Up – The Human Factor in Cybersecurity

Posted by bfont002 on


Introduction
If I were the Chief Information Security Officer with a limited budget, I would
prioritize the most effective and cost-friendly options in order to combat and prevent
cyber attacks. Balancing the trade-off of training and implementing additional
cybersecurity technology in the right way is essential.
Human Factor
Firstly, I would focus on preventing cyber attacks by training. Training employees
in extensive, comprehensive ways, can avoid the exposure to risk factors that lead to
cyber attacks. Moreover, training on how to combat attacks in case they do happen is
also an easier way to have a safe base for any organization. This training would provide
information on specific situations in which there is higher vulnerability, or
understanding the psychology of hackers behind the screen, meaning having awareness
on what they are trying to get, if it is access to monetary funds or confidential
information; and their tendencies or common strategies to do so.
Technology Factor
On the other hand, adding cybersecurity technology can enhance the overall
safety and security of the organization. Human error is certainly a factor and as the
Chief Information Security Officer I should understand that hackers are also trained and
skilled, and they are high in number. This resource would be, in case the training and
employees’ skills fail, to still have a reliable “back-up” wall to maintain the safety of the
organization. The main technologies I would implement are, in the first place, platforms
that inform and alert workers of the risk, such as anti-virus or intrusion detection
systems, in order for them to have additional trust in their skills as now they will most
likely not miss the risk, and encryption for confidential data (Elazari, 2014). These
programs are effective and not expensive, however if the demand for cybersecurity
continues to grow, another option would be to consider advanced technologies such as
endpoint detention and response solutions, or threat intelligence platforms.
Conclusion
To conclude, it is possible to maintain an overall highly effective cybersecurity
base with a limited budget. As long as there is a wisely balanced system of human
training and technological factors throughout the organization, the risks will be
minimized and well resolved when addressed.

Leave a Reply

Your email address will not be published. Required fields are marked *