Homework Wk 6
Today, most major companies, businesses, and organizations use various forms of technology in daily operations. These technological capabilities make processing information, research and development, communications, and various other vital functions of business operations critical for their organizations. Any interruption in these essential operations could have devastating effects on an organization’s business operations, organizational security structure, and several other important services the companies provide.
According to the week six lesson, the most common cybersecurity threats are computer viruses, spyware, phishing, and hackers. Computer Viruses are the largest computer security threat, because they are developed to change the way an organization’s computer system operates without their knowledge. Spyware is installed which allows monitoring of the user’s online activities and records the individual’s personnel information. Phishing attempts typically try to make a user believe that a website is trustworthy or from a reliable source. The purpose of phishing is to obtain personnel sensitive information and use that information without the individual’s consent. Hackers, also known as Hacktivists or predators, are exceptionally knowledgeable individuals who can covertly access a data system, then change, steal, misuse, or damage that system. These are the most common threats that can affect an organizations business operations and security structure.
Because of the damage or potential lost to an organizations data, proprietary information, essential business operations and communications it is imperative to develop and implement a cybersecurity program within the organization’s security structure. Lost data, lost time, and server hacking can all have serious financial cost, companies could pay hundreds of thousands or millions of dollars if information is disclosed without authorization. This could be people’s personnel sensitive information, an organization’s research on a new technological development, financial information could be altered, client's could be lost, business reputation damaged and several other examples. Not having a cyber security program implemented within an organization's security structure and enough anti-virus software to protect organizational assets could possibly ruin an organization financially.
So, development of a cybersecurity program within the organization’s security structure is a necessity. Having experience cybersecurity programmers will protect an organization’s technological, computer, and data assets. Many companies not only employ cybersecurity professionals but also require employees to receive training on spyware, malware, and phishing to mitigate against possible losses. At my company, Exelon Energy, we receive annual training and the company’s IT department randomly emails employees to test them on suspicious emails. If the employee consistently opens documents that are suspicious, a minimum of two times, they receive additional training on spyware, viruses, phishing, and malware. There have been numerous examples of how organizations have been negatively impacted by viruses and cyber threats, and Dan Swinhoe editor for CSO reported on the fifteen most famous data breaches of the 21st century. These companies included Adobe, eBay, Equifax, LinkedIn, Marriott International, MySpace, Yahoo and several others. Each resulted in loss of individual’s personnel sensitive information and millions of dollars paid for restitution.
References:
Swinhoe, D. (2020, April 17). The 15 biggest data breaches of the 21st century. Retrieved October 15, 2020, from https://www.csoonline.com/article/2130877/the-biggest-data-breaches-of-the-21st-century.html