Two myths stand in the way of boards understanding the threats posed by cyber attacks and ensuring their businesses can be safe against cyber criminals and hackers.
These misconceptions about cyber security were identified by Ciaran Martin, CEO of the National Cyber Security Centre – the cyber arm of GCHQ – who warned organizations: “There isn’t much of an excuse any longer for not knowing about security as a business risk”.
First, too many organizations still believe that all cyber attacks are targeted, meaning that unless they’re specifically selected as the objective of a hacking campaign, they won’t fall victim. Second, some board level executives don’t engage with cyber security because they believe it too be too complicated – in some cases even being fearful of the complexities they perceive as being involved