Two cybersecurity experts shared their advice with business leaders during a Palisades Institute forum called “Cybersecurity: Protect Yourself and your Business.” The presenters at the forum on October 10 were Tony Cetera, Chief Information Security Officer, New York University Information Technology, and Mikhail Falkovich, Director of Information Security, Consolidated Edison.
Companies were advised to follow five steps when devising their security plan – identify, protect, detect, respond, and recover. Even with planning, there is a danger of an attack, said Cetera. “People are the weakest link. I think that’s probably an important message that I want to send,” he said. “You can put lots of tools and technologies in place, but if someone makes a mistake or clicks on the wrong thing because they are not paying attention, that’s when the attacker gets in.”
The experts recommended phishing testing, using benign emails, to find out which employees might be susceptible to an attack. Another recommendation was that companies consider having cyber insurance.