iV4 Blog

Cyber Security Q&A

Written by iV4 | Sep 5, 2018 3:26:27 PM

Take a look at the answers to some of the most frequently asked questions regarding cybersecurity.

 

I have antivirus and firewall, am I protected?

While still suggested as part of your security layering, these tools have had diminishing effectiveness in preventing breaches. Antivirus can only be relied on for malware that it already knows about. With zero-day threats released everyday it takes time for antivirus companies to reverse-engineer and release a patch. Meaning during that time, you're susceptible to an attack.

 

I'm not a big brand. Am I still a target?

Small businesses are actually some of the biggest victims when it comes to cyberattacks. While smaller companies don't have the global scale of enterprise organizations they still have valuable business data such as payment information, medical data, or social security numbers. Today’s businesses operate differently with an increasing number of dependencies, information, and partnerships. Hackers will take advantage of these interconnects regardless of size or revenue generated.

 

Do I really need Security Awareness Training?

Absolutely. Many of the most destructive breaches today i.e. ransomware and phishing attacks, are initiated because of a lack of understanding on the part of employees. Providing ongoing security awareness training and integrating security best practices into your culture is key to preventing social engineering attacks.

 

Why do I need IT governance?

IT governance provides a structure for aligning IT strategy with business strategy. When you implement a control framework, maintaining compliance with regulatory requirements becomes seamless.

 

What makes a good IT security provider?

Core capabilities including security certifications (CISSP, GIAC, CISA, etc.) year’s and breadth of experience across the many security domains are essential. In addition, a solid security provider wants to become your partner and build a relationship with internal IT to drive cultural adoption of the security program. Read more our blog post.

 

Do I really need to invest in security?

Think about the cost implications to your business if you were breached. Legal fees, reputational damage, and loss of customer confidence. Investing in security managed services will cover all the bases of a comprehensive security program including compliance. In the end, the cost to remediate far exceeds the cost of protection.