News

How to create an effective cyber security plan

In order to have an effective cybersecurity plan, it is first necessary to know what assets need to be protected, whether tangible or intangible (buildings, computers, software, data, etc.), and then to investigate possible vulnerabilities in order to determine the risks. What is the purpose of the plan? To prevent, avoid or eliminate these risks.

In the first half of last year 2017, many computers around the world were affected by a malware programme called "WannaCryOnce executed on the computers, it encrypted the data in such a way that it prevented the normal execution of the programs. And the users were forced to pay in bitcoin The payment was made and they received the key to decrypt the data and return to normality, if such a situation of abuse could be called that when both individuals and employees received an email pretending to be from a known company and executed an attached programme.

Why were both individuals and companies affected? Because the path they followed until they fell for the scam was easy and simple, since in both cases they had received an email simulating a well-known company in the market and executed an attached programme initiating the process, becoming unstoppable. Could the above situation have been avoided?

Intentional collaboration?

Today, we know that there are many people in the world dedicated to understanding the vulnerabilities of operating systems, whether for large corporations or for security services, even sponsored by countries, which could make it easier for this group to carry out intrusive cyber-attacks on computers. But to this specialisation we have just discussed, we must add the importance of the collaboration, intentional or not, of people who receive or use the email. Some additional questions arise: do all employees need to have access to the internet? can everyone enter or retrieve data by tapping an external hard drive, flash drive or similar? which employees can have open communications? are the passwords that are used secure? If we have computers in our care, do we apply the security policies recommended by software manufacturers? It has been noted and is well known that, even when vulnerabilities are known, many companies do not apply the appropriate policies.

All this leads us to think about how much resources, in time and money, to devote to cyber security and how far to go. These are questions that everyone needs to answer in one way or another. Finally, to prevent cybersecurity from being seen as an activity that impedes the daily development of any business and to see it as an ally that allows us to work safely, even if we have to follow certain processes and procedures, we must have an appropriate communication policy.


Manuel García Ramírez
Director at MGR IT and Security Consultants

BCG Report - Most Innovative Companies 2021: Overcoming the Innovation Readiness Gap

According to the latest Boston Consulting Group (BCG) report, Most Innovative Companies 2021: Overcoming the Innovation Readiness Gap, the COVID-19 pandemic has demonstrated the importance of innovation excellence in turbulent times. Pharmaceuticals have performed superbly this year, joining tech and software companies that have dominated the rankings in recent years....

-- BCG Women's Boot Camp Spain

Boston Consulting Group (BCG) will hold the 3rd BCG Women's Boot Camp Spain from June 22 to 24, an event aimed at female university students from all over Spain that offers the opportunity to learn first-hand how to generate value, impact and change the world from consulting strategic. Oriented towards...

BCG Report -- 37% of non-office employees could leave in the next 6 months

37% of non-office employees could leave their jobs in the next 6 months if organisational leaders do not act quickly to remedy this, according to a recent study by the Boston Consulting Group (BCG). These employees are workers in construction, manufacturing,...

Manuel López Torrents -- "Corporate governance is rusty, it prevents the circularity of the economy".

Manuel López Torrents is a long-standing economic journalist. After more than 25 years in the profession, he has accumulated experience in media such as El Economista, El Boletín, Onda Cero, El Confidencial, Negocio, Vozpópuli, La Política on Line and now, Estrategias de Inversión. He was the promoter of the event Spain Investors...

Rafa Rubio -- "Businesses need to engage with institutions in a professional way".

The world of lobbying has evolved in recent years, coming out of the shadows and becoming a professionalised, more transparent field, capable of opening and strengthening democratic channels of communication and influence between companies, organisations and public authorities. One of the pioneers of...

Spain, better placed than other countries in the face of the impending economic slowdown

The Spanish economy is resisting the onslaught of the global slowdown better than expected. This is one of the main conclusions of the presentation given by the economist Emilio Ontiveros, president of Analistas Financieros Internacionales (AFI) at a recent event on Independent Management held in Madrid. Global uncertainties Ontiveros began by alluding to...

More conversations, more ideas, more PROA.
Follow us on our networks.

Receive ideas with criteria

Every week we share reflections, trends and the key aspects of about reputation, strategic communication, public affairs and innovation. Content designed for professionals who value information with diligence and perspective.