sb-nz logo
Story image

Strong cybersecurity posture crucial for company success - Fortinet

Maintaining a strong approach to cybersecurity is critical to the success of any organisation, as a company's security posture can have a big impact on its external partners and customers, says Fortinet.

A robust cybersecurity strategy not only protects the business itself, but it adds another layer of defence to limit the potential impacts any security breaches can have on the wider business network, including partners and customers, the cybersecurity firm says.

Sophisticated cybercriminals increasingly use unauthorised access to one organisation to compromise and exploit partners and customers that are connected through the wider network. This makes it essential for organisations to ensure that their own security protects themselves and their partners and customers. 

They should also conduct due diligence to ensure partners aren’t inadvertently creating vulnerabilities with insufficient cybersecurity measures.

“Cybercriminals often see smaller partners as an opportunity to infiltrate and exploit larger, more lucrative targets. Increasing interconnectedness means a successful breach of a smaller organisation—with fewer security resources to defend against an attack—can translate into access to larger organisations," says Corne Mare, director, security solutions, Fortinet.

"The increasing connectedness of business networks means organisations are steadily becoming more responsible, even indirectly, in protecting customer and partner networks and information. 

"Any kind of breach or cyberattack will affect an organisation and its networks, leading to financial and reputational impacts."

Mare says executives need to consider the extended impacts on customer and partner trust, shareholder value, and brand reputation that can come from breaches and the exposure of sensitive data. 

The potential fallout from a cyberattack includes share prices dropping, an increase in customer turnover, and a reduced pipeline as potential customers take their business elsewhere.

“There’s an expectation that information will be protected by relevant parties when companies enter into business partnerships," says Mare.

"Customers and partners alike may choose to end their relationships if financial and sensitive company information is breached.

“Maintaining a strong security posture can positively affect an organisation’s recovery time in the event of a security breach.

“When looking at Prudential Standard CPS 234, businesses should presume they have already experienced a data breach. They should also consider the effects a data breach will have on business. Leading CISOs are always reassessing their controls, including on relevant third-party access.

“This means organisations should consider the security posture of the companies in their wider business networks to ensure that they aren’t vulnerable to attacks that come through an unsecured partner.”

There is no question that information security is a shared responsibility. But there are steps organisations can take to ensure they present the best defence to protect information, says Fortinet.

Companies with a strong security posture often share attributes such as conducting regular audits and assessments of vulnerabilities, and providing relevant training for employees.

Furthermore, a strong security posture often comes from having dedicated CISOs and adequate budgets that are strategically invested in necessary technologies. Cybersecurity is increasingly becoming a key topic at board level, especially as companies become more connected.

Having a fundamental understanding of the impacts that an organisation’s security posture can have on customers and partners is critical to any company that is concerned with how it performs both on the stock market and within its industry. Interconnectedness can add significant value to business relationships, but it can also create more shared risk.

“It’s important to carry out due diligence with every new business partnership to confirm that any partners are as secure as your organisation," says Mare.

"For smaller organisations, it’s also critical that larger partners consider what can be done to help secure shared information and networks.

“It’s crucial that organisations seek to continually improve their security posture to ensure partner and customer trust isn’t misplaced in business relationships. Security must be considered in every business conversation and treated as the highest priority by everyone.”

Story image
NortonLifeLock introduces dark web monitoring to its security suite
Dark Web Monitoring Powered by LifeLock will be capable of monitoring the dark web, searching for over 120 personal identifiable information including email, physical address, phone number, driver licence number, credit card or bank account numbers and gamer tags.More
Story image
Zero trust is the way to secure the distributed workforce - Empired
Existing security solutions need to evolve to accommodate the new remote workforce.More
Story image
OT networks warned of vulnerabilities in CodeMeter software
Manufacturers using the Wibu-Systems CodeMeter third-party licence management solution are being urged to remain vigilant and to urgently update the solution to CodeMeter version 7.10.More
Story image
Acronis announces new security endpoint solution
The solution is an integration of data protection and cybersecurity which provides customers with effective endpoint protection in a landscape where the pointlessness of perimeter security is becoming more pronounced.More
Story image
Got crypto? Pay tax – A quick look at IR's new crypto-asset guidance
Inland Revenue's new guidance aims to provide more certainty for New Zealand taxpayers who hold crypto-assets, and to help people ‘get things right from the start’.More
Link image
DevOps teams struggling to achieve enterprise scale - tips for enablement
Christian Oestreich, a senior software engineering leader with experience at multiple Fortune 500 companies, shares how a metrics-driven mindset can dramatically improve software quality and enable DevOps at enterprise scale.More