CyberSecurityTips #1: How would we know what security technologies and products we need?

How would we know what security technologies and products we need?

We first need to understand what is it we are going to protect, what makes our business tick and brings in revenue - something we can’t do without. It can be customer lists, proprietry information or trade secrets or our data.

Once that is done, we need to understand the risks and threats as well as what we as a company are willing to absorb (risk appetite) on what we have identified and what the impact may be, if the impact is minimal and we estimate it to be say $3,000 for a rare incident, and that is something we are willing to take - that would tell us that we should not spend more than that on a security technology or product, most products pretty much offer the same capabilities unless it is niche/new or has a very specific feature you require.

Please do engage a company with experienced consultants that can estimate and advise on technologies that can help your organization.