The experts of cyber security raised an
alarm over the limited knowledge among the senior management of various
companies, stressing the need for an immediate upgrade to avoid large-scale frauds.
The Reserve Bank of India’s diktat makes it mandatory for top banking officials
to undergo a training in cyber security, and should be extended to
other sectors well. Experts at Information Systems Audit and Control
Association (ISACA) annual conference 2019 were speaking. At an internal
experiment within a company showed 99% of the top management had yielded to a phishing mail sent on
purpose. About 1% of the 99% who tried to open the e-mail, tried three or four
times to do so. Many of them even changed their passwords as instructed in their
phishing mail. This shows how the poor level of awareness about cyber security basics
is there among the top management. It is often difficult to convince top
management agreeing with participants to allocate more funds for cyber
security, that is rooted in limited understanding, the experts says. It is
important to have a roadmap for 3 to 5 years and then approach the board for
funds. The cyber security is a subject of
tremendous relevance and that the state government has taken various steps to
strengthen it, addressed by Telangana IT Secretary
Jayesh Ranjan. The cyber security policy has been rolled out three years ago the
security operations centre (SOC) set up to protect critical databases of the
government. Training programmes are being offered in cyber security by the
state and collaborations with The Hague Security Delta and Centre for
Development of Advanced Computing (CDAC). The conference ISACA was designed
around the theme, ‘Cyber security: redefining trust’ attended by 350
professionals, including bankers, software professionals, IT auditors, cyber
security professionals and risk managers.
0 Comments