Today, we are all aware that any kind of organization – big or small, corporate or startup – located anywhere in the world can be subject to various types of cyberattacks. An essential characteristic of cloud computing as defined by NIST mentions that a cloud service should be accessible anytime from anywhere in the world and on any device that supports a browser and an Internet connection. While this provides a major advantage to people on the move or who need to access the cloud services remotely, especially from their mobile devices, it also neutralizes this effect since cyber attacks now occur practically anytime and anywhere in the world.
Beyond Cyber Security
In recent times when cyberattacks rose in prominence, organizations began to protect themselves from the growing persistent threats by adopting various cloud security measures. NIST recently released a standard Cyber Security Framework (CSF) for industries and governments. Additionally, institutions started offering different courses in cybersecurity, while several organizations started training their employees on the same. The fact that technology is advancing so rapidly these days can be demonstrated that in today’s times it is just not sufficient for organizations to only adopt cybersecurity but rather also need to gear up and adopt a new stance – namely, cyber resilience. Cyber resilience extends the cybersecurity portfolio by strengthening an affected organization to respond and recover quickly from any cyber incident(s).
Few institutions today have started offering courses in cyber resilience, though there are many that offer cybersecurity. The cyber resilience best practices portfolio will enable a participant to understand the various fundamental concepts of cyber resilience and its terminologies and apply the same to their respective organizational environment. These courses are not only suitable to IT-related or technical minded professionals, but also to a regular employee from the HR, Sales or Marketing, Finance and other departments. To an ordinary person, the courses would be beneficial by providing the necessary tips for proper daily usage of the internet medium and to be aware of the threats and vulnerabilities that are created on account of errors or negligence. It would be prudent for all those who use or work in cyberspace to attend such training at the earliest so as to prepare with the minimum precautions required to safeguard themselves in a cybercrime prone world.
Training institutions around the world should also partner with reputed industries and also offer similar types of cyber resilient courses. Various examples and case studies presented in these training will help individuals and organizations understand the anatomy of cyber-attacks and help guard against similar future occurrences. Further, it would also empower participants to respond and recover from any such devastating effects. Additionally, cyber drills and cyber simulations can also assist organizations in planning and preparing against these adverse threats.
Cyber attacks pose a very big threat these days and only protecting or planning to protect against these is not the complete solution. The move towards cyber resilience should be adopted as early and as fast as possible wherein the objective should not only be to protect, but also to prevent, detect, respond and recover from major incidents. It is advisable to attend and provide training in cyber resilience to as many as possible so that every individual or organization in the world today can continue to work safely in cyberspace with the belief that they are better prepared to face any eventuality in their work or lives.
Take the first step; learn more about the recently launched RESILIA – AXELOS Cyber Resilience Best Practices and give your learners a fighting chance against cyber attacks.
About the author
25+ years IT professional, International accredited Trainer and Speaker.
Possess 25+ years IT software development and project management expertise with 10+ years in the USA (1999-2009) working for Fortune 500 companies mainly with IT web software products and services. Experience ranges from developing legacy COBOL applications, Y2K conversion, Mid-range, Mainframe, Client-Server to Cloud Computing platform. Conducted a variety of IT training courses, both in-house and for the public.