News

This is how an effective cybersecurity plan is developed

In order to have an effective cybersecurity plan, first of all one must know what assets need to be protected, whether they are tangible or intangible (buildings, computers, programs, data...). Once known, one must investigate the possible vulnerabilities in order to determine the risks. What is the purpose of the plan? To prevent, avoid or eliminate those risks.

In the first half of 2017, many computers around the world were affected by a harmful program called "WannaCry", which once executed on the computers encrypted the data in such a way that it prevented the normal execution of the programs. And users were forced to pay in bitcoin at a hidden network address. Once the payment was made, they received the key to decode the data, and were able to return to normal, if such an abusive situation could be called that, when both individuals and employees received an email simulating a known company and ran an attachment.

Why were both individuals and companies affected? Because the course they followed until they fell into the trap was easy and simple, since in both cases they had received an email simulating a company known in the market and they executed an attached program starting the process, becoming unstoppable. Could the previous situation have been avoided?

Collaboration, intentional?

Nowadays, we know that there are many people in the world dedicated to understanding the vulnerabilities of operating systems, whether for large corporations or for security services, even sponsored by countries, which could make it easier for this group to carry out intrusive cyber-attacks on computers. But to this specialisation we must add how important is the collaboration, intentional or not, of people who receive or use emails. Some additional questions arise: does everyone need to have access to the internet? can everyone enter or extract data by clicking on an external hard drive, (pendrive) or similar? which employees can have open communications? are the access keys used secure? If we have equipment in our charge, do we apply the security policies that software manufacturers recommend? It has been observed, and it is well known, that even though the vulnerability is known, many companies do not apply the appropriate policies.

All this leads us to think about how many resources, in time and money, should be devoted to cybersecurity and how far to go. Questions that everyone has to answer in one way or another. Finally, in order to avoid cyber security being taken as an activity that prevents the daily development of any business and to live it as an ally that allows working in a safe way, even if certain processes and procedures have to be followed, we must have a proper communication policy.


Manuel García Ramírez
MGR Consultants IT and Security Manager

-- Conversation with Oscar winner Sergio López-Rivera

Valvanuz Serna Ruiz, managing partner of PROA, talks to Oscar winner Sergio López-Rivera about the importance of giving light to the creativity of children who cannot find their place. She pays tribute to eight-year-old Sergio, who has courageously helped her to achieve Oscar gold....

PROA Observatory presents: 'El Click', three personal testimonies on the importance of mental health

    The PROA Observatory has compiled in the documentary 'El Click' the testimony of professionals whose personal experience in the last two years has changed their lives. The pandemic and the post-pandemic, together with the Spanish socio-economic framework and the international context, have led to an explosion in the problems of...

The Lack of Love and Violence in Teens

Human beings on the way to maturity to go through moments that can accelerate it or strand them in the middle of development. Stages which are especially influential include your stay in the womb, the first two years, and pre-adolescence from 9 years to 12 in which there is an...

10 Management Skills Required by Companies

Carlos Recarte, founding partner of Recarte & Fontenla, explains in Proa Comunicación's video when companies should call a headhunter. Also, he describes to what extent it is important to consider the professional environment and highlights the 10 management skills that companies currently require: The courage and determination to take risks...

Dr. José Antonio Rodríguez Piedrabuena -- Interview with Miguel Ángel Poblete, PhD in volcanic geomorphology

Dr. Rodríguez Piedrabuena interviews Miguel Ángel Poblete, PhD in volcanic geomorphology and professor at the University of Oviedo, about the current volcanic situation. Through an analysis of the eruption of La Palma and the volcanism of Campo de Calatrava, Poblete explains the importance of the geography of the volcanic...

Repetition (and II): The B-side

Another article on electoral debates on television? Another article on the six debates broadcast, two by RTVE, two by La Sexta, one by TVE-3 and one, the first to be held, by Barcelona Tribuna-La Vanguardia? That's what I'd like to read, some might say, rather than watch them (as a diet for a single week...).

More conversations, more ideas, more PROA.
Follow us on our networks.

Receive ideas with criteria

Every week we share reflections, trends and the key aspects of about reputation, strategic communication, public affairs and innovation. Content designed for professionals who value information with diligence and perspective.