printer friendly version

Design for the users, not against them

Security remains a critical priority for the modern organisation. The radical increase in attacks throughout the course of 2020, thanks to the surge to work from home and an explosion of unplanned business vulnerabilities, has taken its toll. The Mimecast State of Email Security 2020 report found that six out of 10 companies experienced a ransomware attack, there was a 64% increase in email threats and 79% of organisations were negatively impacted by their cybersecurity limitations. The threat actors are perpetually testing new threat vectors and no organisation, no sector and no industry is safe.

Henk Olivier.

This constant pressure has ignited even deeper industry interest into solutions that embed the principles of security by design. Principles that engineer software, systems, hardware and platforms for security from the foundation upwards. That ensure every part of the security system is designed to connect with the others, mitigating the risk of siloes and unexpected vulnerabilities, while allowing for a more elastic approach to overall security posture.

Security with users in mind

Security by design starts with IT security. Here, in the bowels of the system and infrastructure, is where the security of the business should be designed around the user, making access more efficient and capable. Users are possibly the greatest threat to any organisation’s security and their education, training and access must be constantly managed and monitored to ensure the business remains tightly shut to attack. The so-called human firewall is ultimately managed by ongoing training and awareness, but it is supported by a security system that puts the user at the heart of the experience.

To fully realise the challenges that may lie in your organisation and to create a security posture that is relevant to your unique requirements, start with a cybersecurity audit. This will unpack the risks that your company faces, expose potential holes and vulnerabilities and help you to fully realise the scale of your security investment. An audit can be used as both a short- and long-term springboard from which to evolve security investment and strategy and should be undertaken on a regular basis to ensure that new vulnerabilities or unexpected holes are caught and plugged.

Security by design is not exclusively for the enterprises that leverage the Internet of Things (IoT), artificial intelligence (AI), automation and robot process automation (RPA), but it certainly is critical for industries that do. Manufacturing, mining, supply chain, logistics: companies in these sectors that are looking to embrace these emergent technologies to improve processes and streamline expenditure, must pay close attention to security at every touchpoint and layer of their implementation.

For organisations looking to evolve their security best practice and to shore up the defences over the coming year, adopting a security by design approach can transform long-term spend and security posture. By unpicking every knot and redefining the foundational factors that make up your security systems and approaches, you can strengthen your stance and significantly improve your company’s ability to fend off attack. Ultimately, this is not security that’s slapped on at the end of the technology implementation process, it is security woven into the fabric of the organisation and that’s capable of evolving to meet changing demands, security parameters and attack vectors.

Share this article:

Further reading: