Inflexion
Menu

Cybersecurity is a team sport

Cyber threats are becoming more sophisticated. And the risk can be immense, to individuals and professionals alike, with companies of all sizes advised to be prepared.

Cybersecurity has become essential in today’s world for protecting assets, data, and reputation. Risk management, education, and collaboration can help firms to stay safe and grow with confidence according to Robin Oldham, Founder of Cydea, a specialist consultancy focused on this issue.

Recent years have shown the world that cyber threats come in many forms. No longer confined to “hackers in hoodies”, sophisticated cybercriminals are motivated by profit and each threat requires a tailored approach to mitigation. “Today you have highly organised groups, even offering 24/7 support, much like legitimate businesses. Their goal is to exploit any weakness,” warns Robin. He points out that hackers take the easiest route to gain access, looking for the most vulnerable entry points.

An important component of cyber security hygiene is monitoring external perimeter of IT systems. Organisations need to be aware of what potential threat actors can see. For a mid-market company this can be a significant overhead. Inflexion provides tooling for portfolio companies to understand potential threats visible for an outside observer. Patch management, potential vulnerabilities and even leaked credentials found on the dark web are among more than a dozen tracked metrics. “Think of it as keeping an eye on your digital footprint. It tells you when something’s gone astray,” Robin explains.

Cybersecurity requires a collaborative, team-based approach. “Risk management isn’t just for IT—it’s for everyone,” he says. This mindset encourages diverse perspectives and collaboration among departments like legal, product development, and operations. And by working together, these teams can identify and address potential vulnerabilities from multiple angles.

Robin uses the analogy of brakes on a car: “Brakes might seem like a restrictive feature, but they’re what let you drive fast with confidence. Similarly, cybersecurity protocols allow us to move forward safely.”

Despite the complex and often costly nature of cybersecurity, the basics can make a huge difference. Basic cyber housekeeping such as not reusing passwords, enabling two-step verification, and regularly applying security patches can go a long way.

Companies doing these things, e.g. passing Cyber Essentials, report 80% fewer cyber insurance claims according to the National Cyber Security Centre’s 2023 Annual Review. Robin recommends password managers, noting that unique passwords provide more security than reusing the same one across multiple platforms. “It’s much harder for hackers to break into your system if every password is different,” he says.

Preparation is critical since even with preventative measures, incidents can occur. Robin stresses the importance of having a well-thought-out response plan. “You need to know who’s in charge, what to say, and how to react when something happens. And you need to practise that plan regularly.” Having an incident response strategy is particularly useful during high-stress moments, as it allows teams to follow a clear protocol.

These plans should cover both operational and communication aspects. Robin explains, “Imagine you need to take your product offline temporarily to fix an issue. How does that affect your customers? How do you communicate with them? Practising these scenarios prepares you for real-world situations.”

Cybersecurity is an ongoing process, not a one-and-done. “There will always be new threats, but by staying proactive, regularly updating your practices, and fostering a collaborative environment, you can stay ahead,” Robin says. He encourages companies to take advantage of available resources, mentioning quarterly cyber check-ins as a valuable tool for staying abreast of current risks and the mentoring available for security teams.

Contact

YOU MAY ALSO LIKE