Home Video Interviews Being Compliant Gives Organizations a False Sense of Security

Being Compliant Gives Organizations a False Sense of Security

Ditmar Tavares, Senior Cybersecurity Consultant, Mariner Innovations, explains where organizations fall short in their awareness about threats that target their business and employees.

While cybersecurity awareness is improving within organizations, they are failing with threat protection because they are unaware of the threats they are facing in the context of their business and employees. In a video interview with Brian Pereira, Editor-in-Chief, CISO MAG, Ditmar Tavares, Senior Cybersecurity Consultant, Mariner Innovations, breaks this down for us and elaborates on the areas where organizations are falling short.

Tavares sees organizations changing their awareness, thanks to the incidents reported in the news. He says most of them are taking steps to be more secure. He breaks down cybersecurity awareness into two portions: being aware of the field, which he considers “pretty good” as everybody knows what it is and what they are concerned about.

The second part of it seems to be a problem — how well organizations know about the treats they are facing, specifically based on what they do, the risk that they are introducing with the actions they take, with the data they are collecting — or even with the social media posts their employees are doing.

He believes risks are introduced with the third-party organizations they do business with. That is where most organizations are falling short. He wishes they knew what matches their needs, gaps, and what they need to do and tailor to their expectations.

CISO MAG Experts Series

CISO MAG interviews CISOs and cybersecurity experts from all parts of the world. Do read their opinions or watch their videos on cybersecurity awareness and incident response by following the links below.

“The State of Readiness Will Always Be in a Flux”

For Dr. Imtiaz Abdul Kader, CEO, Perfected Execution, there are two core elements to cybersecurity awareness and readiness. One is the training and the skills, and the other is partnerships within the industry.

“Security is Everybody’s Business”

Everyone in the organization is a security leader and is responsible for security, says Dr. Frank E. Ofori, Cyber Security Specialist and former U.S. Army Veteran.

Expert’s Take: Why Organizations Fail to Prepare for Cyberattacks

Le Nguyen Truong Giang, a Global Security Operations Lead and Security Transform Consultant, speaks to CISO MAG about cybersecurity awareness, resilience, and failure to prepare for cyberattacks.

Cybersecurity Awareness Month 2021: Here’s What the Experts Have to Say


About the Interviewer

Brian Pereira

Brian Pereira is the Editor-in-Chief of CISO MAG. He has been writing on business technology concepts for the past 27 years and has achieved basic certifications in cloud computing (IBM) and cybersecurity (EC-Council).

 

More stories from Brian