Cracking the Code: Explore the Strategies Redefining Data Protection and Confidentiality in the Digital Age

Cybersecurity excellence as IT, Legal, and Compliance teams unite to reveal the collaborative strategies safeguarding digital assets. Intrigued to witness the revelations reshaping the landscape of data protection?

On: January 29, 2024

Jules Ferdinand Pagna Disso

Director | Group Head of Cyber Risk Intelligence, Insider Technology Risk & Digital Asset Risk

How is it important to encourage productive communication and collaboration among IT, legal, compliance, and other pertinent teams to enhance cybersecurity measures? What strategies do you employ to achieve this objective?

Productive communication and collaboration among IT, legal compliance, and other pertinent teams are essential for enhancing cybersecurity measures. Cybersecurity is a multidisciplinary issue that requires expertise and input from various departments within an organisation. By working together, these teams can develop comprehensive strategies that address both the technical and legal aspects of cybersecurity. Effective communication ensures that all team members are on the same page regarding cybersecurity policies and procedures, preventing misunderstandings and fostering a unified approach.

How do you handle the detection and prevention of insider risks while maintaining the necessity for data accessibility and usability?

Balancing the need for data accessibility and usability while detecting and preventing insider risks is a critical challenge. Organisations can categorise insiders based on their potential to cause harm, such as non-malicious insiders, malicious insiders, and compromised insiders. Tailoring security measures to address each type of risk is crucial. This can involve implementing Data Loss Prevention (DLP) technology to monitor and control data transfers, improving access controls to limit unauthorised access, and providing comprehensive employee training to raise awareness and reduce the risk of insider threats.

Is it possible to ensure that risk management plans are consistent with the company’s overall business strategy and objectives, particularly with regard to safeguarding digital assets and data confidentiality?

Ensuring that risk management plans align with the company’s overall business strategy and objectives is vital. By involving key stakeholders, including IT professionals, legal compliance teams, and business leaders, organisations can develop strategies that balance the need for data security with operational needs and strategic goals. It is important to consider the potential impact of cybersecurity threats on the organisation’s operations, reputation, and legal obligations. Creating a culture of cybersecurity, where awareness and best practices are integrated into all aspects of the organisation’s operations, helps ensure that risk management plans are not just reactive measures but proactive strategies consistent with the organisation’s overall objectives.

Discover the secret recipe for harmonising cybersecurity with your company’s DNA with Jules during our 18^th Annual Banking Operational Risk Management Summit, which will be held on
7 – 8 of February at InterContinental Hotel Vienna.
Dive deep into insightful case study: “Cybersecurity and OpRisk: Incorporating Cyber Security Into Operational Risk Framework”, and move to the new banking age!

→ visit event website ←

www.oprisksummit.com

Short Speaker BIO:

Dr. Jules Disso is a highly experienced cybersecurity leader with nearly 20 years in IT and cybersecurity. His experience includes SOC management, industrial control systems, red teaming, auditing, threat intelligence and incident response.

In his current role as a Risk professional, he oversees risk intelligence and digital asset risks ensuring comprehensive security controls, policies and governance across all functions. He has managed the external attack surface for over 4 years in his current role.