- Smart organizations are encouraged to meet certain standards and regulations to protect data against cybersecurity threats
- With more than 15 billion user credentials scattered across the dark web, the threat is real
- CEO notes that compliance is an important driver for security, and organizations should never view it as a mere technical nuisance
Complying with security requirements should be about more than just ticking off mandatory checkboxes, says CISO Global (NASDAQ: CISO) CEO David Jemmett (https://ibn.fm/dDN38). CISO Global, formerly Cerberus Cyber Sentinel Corp., works closely with companies to provide essential protection, and Jemmett is a recognized expert in the field of cybersecurity.
“Today, all organizations are required or encouraged to meet certain standards and regulations to protect their data against cybersecurity threats,” writes Jemmett in a guest essay for The Last Watchdog. “The regulations vary across countries and industries, but they are designed to protect customers from the threat of posed data breaches.”
That threat is real, notes Jemmett, citing estimates that currently more than 15 billion user credentials are scattered across the dark web. “The importance of compliance is clear to see,” he writes. “In spite of this, many organizations today still see compliance as a nuisance, rather than a business enabler. All too often, organizations will analyze compliance requirements and harden their systems and practices to meet them, without really thinking about their importance to the business. Instead, they will tick the mandatory checkboxes, even if security measures haven’t been enacted, and file the record away as quickly as possible.”
This approach is dangerous, explains Jemmett, noting that single “point-in-time” compliance doesn’t cut it in today’s threat landscape. “Compliance is no longer a ‘set and forget’ security framework,” he continues. “To keep up to speed in today’s evolving threat landscape, compliance is a process that must be maintained continuously.”
In his essay, Jemmett offers several tips to help companies implement an effective cybersecurity compliance strategy, providing timely, relevant protection against current as well as new and emerging threats. These suggestions include staying up-to-date with the evolving and growing attack surface, taking a risk-based approach and remembering that cybersecurity is a culture, not a product. “Compliance is an important driver for security, and organizations should never view it as a mere technical nuisance. Cybersecurity is a critical business enabler today, and those that get it right will excel. Those that get it wrong, and do not prioritize their defenses, could stand to lose everything,” Jemmett concluded.
CISO Global is gaining recognition as a leading provider of global cybersecurity and compliance as it rapidly expands by acquiring world-class cybersecurity, secured-managed services and compliance companies. These acquisitions bring top-tier talent to the CISO table, enabling the company to utilize the latest technology to create innovative solutions to protect the most demanding businesses and government organizations, mitigating continuing and emerging security threats and compliance obligations.
For more information, visit the company’s website at www.CISO.inc.
NOTE TO INVESTORS: The latest news and updates relating to CISO are available in the company’s newsroom at https://ibn.fm/CISO