The ASIS Chapter 119 Women in Security group held its third quarter meeting on August 8, 2017, at Protus3. Guest speaker for the meeting was Supervisory Special Agent Jessica Nye, the current Supervisor of the FBI Cyber Squad in Raleigh, NC.
As the audience consisted of industrial security professionals, Ms. Nye’s presentation of Current Cyber Threats and Trends was both timely and specific to the vulnerabilities we all face as a business community. Attendees were able to share some of the events that they have dealt or are dealing with, and collectively the group was able to take the information back to their organizations in support of their programs.
One of the biggest take-aways for the group was that it is not a matter of “if” your organization with be victimized by a cyber event but “when” and how significant the damage will be. We have all heard about the companies and agencies who have downloaded phishing emails that allowed a hacker to hold their intellectual assets for ransom, and many companies have paid to get their data back. New trends show that like any blackmail scheme, this is often not a “one and done” scenario but can become an ongoing extortion relationship. As always when talking about protection of assets, it’s all in the details:
- Know what your most precious assets are.
- Protect those assets using layers of security – the more critical the asset the more layers of security.
- In the case of cyber assets, usable, up-to-date back-ups are critical.
- Training and constant awareness is your best friend in the protection of assets – most losses are cause by a trusted insider by accident, ignorance, or nefarious intent.
- Understand that business assets are being targeted by people who are activists, criminals, insiders, espionage, terrorists, and warfare.
- Beware of data breaches via your trusted advisors; law firms are a known target for industrial asset mining. (If they can’t get what they want from you, they will try to get it from someone representing you.) This requires due diligence on the organization’s part to set minimum security requirements for trusted advisors.
ASIS International is a global community of security practitioners, each of whom has a role in the protection of assets – people, property, and/or information.
The Women in Security (WIS) council was created to provide support and assistance to women in the security field as well as inspire those interested in entering the profession.