To mark the 55th International Internet Day, Open Circle organised an informative event on cyber security at the ComedyHaus in Zurich. Together with leading industry experts, Open Circle offered the numerous participants valuable insights into the growing threats posed by cyber attacks and practical measures for prevention and defence.
A look back at our most recent event shows that cybersecurity is not a one-off measure, but an ongoing process. Proactive preparation is the key to fending off attacks and remaining capable of acting in an emergency. ‘It can happen to anyone – the best defence is proactive preparation,’ says Alex Hediger, CISO as a Service at Camarque Switzerland.
The experts presented five crucial protective measures for companies:
Protection against cyber attacks begins with technology. Critical security updates must be installed immediately to quickly close potential security gaps. Regular, ransomware-proof backups that cannot be encrypted in the event of an attack, for example on an offline storage medium such as a tape, are also essential. Using a password manager also makes it possible to use complex passwords that no longer have to be memorised individually. Two-factor authentication (MFA) can also be easily managed in this way, providing additional access protection.
Cooperation with experienced partners (such as Redguard), who specialise in the management and investigation of cyber attacks, can be crucial in an emergency. These professionals deal with the analysis and defence against threats on a daily basis and bring valuable experience to crisis management. Crisis communication is equally important: it must always be formulated carefully and truthfully in order to maintain trust and minimise possible reputational damage. Specialised crisis communication agencies can provide valuable support here.
In an emergency – such as a ransomware attack – fast and structured access to important data is essential. It must be possible to inform customers immediately and call on specialised partners for defence and recovery quickly. Furthermore, it is essential to promptly change the passwords for all systems, including external platforms such as online shops. It is also necessary to quickly check whether sensitive personal data may have been compromised. To ensure this, all critical information – from customer lists and partner contacts to network plans – should be securely stored on physical data carriers and available offline.
A clearly defined emergency plan is essential to maintain business operations during and after a cyber attack. Of course, a plan will never be implemented exactly as intended, as every crisis brings with it its own unique challenges. But a carefully prepared emergency plan, created in calm times, serves as a valuable tool in an emergency. In the usually stressful situation of an attack, a well-developed plan provides a structure that everyone involved can use for orientation.
‘Awareness is essential,‘ says Alex Hediger. Regular training, such as phishing simulations, can be used to raise employees’ awareness and increase their vigilance. This makes it easier to recognise well-disguised ‘CEO fraud’ emails, in which a supposed managing director or senior executive asks employees to make expensive transfers. Such training helps to minimise risks and protect the company from costly attacks.
We have developed an IT security awareness webinar to sensitise our customers’ employees. We provide basic knowledge about cyber security, correct behaviour in the event of incidents, secure use of IT systems and many other exciting insights.
In the event of an attack, it is essential to immediately establish a clear management rhythm, according to Dominik Nufer, Redguard’s Lead Incident Responder. This includes a precise damage analysis, the identification of necessary measures, and the decision as to which internal and external partners – for example, management, the IT department or external specialists such as Redguard – are to be involved. The importance of transparent and timely communication to keep all parties involved informed was also emphasised.
Dominik Nufer pointed out crucial questions in an emergency: Can we identify the attacker? What is their standard operating procedure? Which playbooks can be applied? The importance of rest periods and meals was also pointed out to strengthen the resilience of the teams involved in crisis situations.
The event at the ComedyHaus made it clear that cybersecurity is not a one-off task, but an ongoing process that must be strengthened through preventive measures and regular training. Companies are called upon to face up to this challenge and to continuously optimise their measures for defending against and dealing with cyberattacks. The event provided valuable impetus and a platform for exchange and networking – the organisers thanked all the participants and experts for making it such a successful evening.