sb-as logo
Story image

Strong cybersecurity posture crucial for company success - Fortinet

Maintaining a strong approach to cybersecurity is critical to the success of any organisation, as a company's security posture can have a big impact on its external partners and customers, says Fortinet.

A robust cybersecurity strategy not only protects the business itself, but it adds another layer of defence to limit the potential impacts any security breaches can have on the wider business network, including partners and customers, the cybersecurity firm says.

Sophisticated cybercriminals increasingly use unauthorised access to one organisation to compromise and exploit partners and customers that are connected through the wider network. This makes it essential for organisations to ensure that their own security protects themselves and their partners and customers. 

They should also conduct due diligence to ensure partners aren’t inadvertently creating vulnerabilities with insufficient cybersecurity measures.

“Cybercriminals often see smaller partners as an opportunity to infiltrate and exploit larger, more lucrative targets. Increasing interconnectedness means a successful breach of a smaller organisation—with fewer security resources to defend against an attack—can translate into access to larger organisations," says Corne Mare, director, security solutions, Fortinet.

"The increasing connectedness of business networks means organisations are steadily becoming more responsible, even indirectly, in protecting customer and partner networks and information. 

"Any kind of breach or cyberattack will affect an organisation and its networks, leading to financial and reputational impacts."

Mare says executives need to consider the extended impacts on customer and partner trust, shareholder value, and brand reputation that can come from breaches and the exposure of sensitive data. 

The potential fallout from a cyberattack includes share prices dropping, an increase in customer turnover, and a reduced pipeline as potential customers take their business elsewhere.

“There’s an expectation that information will be protected by relevant parties when companies enter into business partnerships," says Mare.

"Customers and partners alike may choose to end their relationships if financial and sensitive company information is breached.

“Maintaining a strong security posture can positively affect an organisation’s recovery time in the event of a security breach.

“When looking at Prudential Standard CPS 234, businesses should presume they have already experienced a data breach. They should also consider the effects a data breach will have on business. Leading CISOs are always reassessing their controls, including on relevant third-party access.

“This means organisations should consider the security posture of the companies in their wider business networks to ensure that they aren’t vulnerable to attacks that come through an unsecured partner.”

There is no question that information security is a shared responsibility. But there are steps organisations can take to ensure they present the best defence to protect information, says Fortinet.

Companies with a strong security posture often share attributes such as conducting regular audits and assessments of vulnerabilities, and providing relevant training for employees.

Furthermore, a strong security posture often comes from having dedicated CISOs and adequate budgets that are strategically invested in necessary technologies. Cybersecurity is increasingly becoming a key topic at board level, especially as companies become more connected.

Having a fundamental understanding of the impacts that an organisation’s security posture can have on customers and partners is critical to any company that is concerned with how it performs both on the stock market and within its industry. Interconnectedness can add significant value to business relationships, but it can also create more shared risk.

“It’s important to carry out due diligence with every new business partnership to confirm that any partners are as secure as your organisation," says Mare.

"For smaller organisations, it’s also critical that larger partners consider what can be done to help secure shared information and networks.

“It’s crucial that organisations seek to continually improve their security posture to ensure partner and customer trust isn’t misplaced in business relationships. Security must be considered in every business conversation and treated as the highest priority by everyone.”

Story image
Video: 10 Minute IT Jams - Who is CrowdStrike?
Today, Techday speaks to CrowdStrike ANZ channel director Luke Francis about the company's key products and offerings, its upcoming annual security conference, and the infrastructure it leverages in the A/NZ region.More
Story image
SMBs seeking service providers in face of rising cyber threats
SMBs are struggling with their cybersecurity solutions, with three quarters worried about being the target of a cyberattack in the next six months, and 91% considering using or switching to a new IT service provider if offered a better option.More
Story image
Check Point acquires Odo Security to bolster remote security offering
The deal will integrate Odo’s remote access software with Check Point’s Inifinity architecture, bolstering the latter company’s remote security capabilities in a time where working and learning from home has become the norm, and looks to largely remain that way in the near future.More
Story image
Ripple20 threat could affect 35% of all IT environments – ExtraHop
The vulnerabilities have the potential to ‘ripple’ through complex software supply chains, enabling attackers to steal data or execute code.More
Story image
Just one click – that’s all it takes to let in cyber-crime
So how do organisations ensure that users are not compromised by simply doing their work?  The answer is surprisingly simple, writes Bufferzone Security business strategist for A/NZ Greg Wyman.More
Story image
Emotet malware is on a rampage after months of silence
CERT agencies around the world are reporting a surge in cyber attacks related to the Emotet malware, which is being distributed by email.More