Why Cyber Security must be your priority | KPMG | BQ

Why Cyber Security must be your priority

Why Cyber Security must be your priority

Executive management, Board Members and Audit Committees are now putting Cyber Security near the top of their agenda. Public and private organizations in various sectors worldwide now openly acknowledge that cyber-attacks are one of the most prevalent and high impact risks they face. The problem at hand is that few have experience with Cyber Security related matters. Dealing with the cyber threat is a complex challenge. Every day, new hacking tools are developed, new attack vectors and strategies are being identified and shared. Further complicating matters is the security of Web applications, Client Access Portals and Cloud solutions.

1000

Our Contributors

Related content

golden-lock

Our Biggest Threat

Executive management, Board Members and Audit Committees are now putting Cyber Security near the top of their agenda. Public and private organizations in various sectors worldwide now openly acknowledge that cyber-attacks are one of the most prevalent and high impact risks they face. The problem at hand is that few have experience with Cyber Security related matters. Dealing with the cyber threat is a complex challenge. Every day, new hacking tools are developed, new attack vectors and strategies are being identified and shared. Further complicating matters is the security of Web applications, Client Access Portals and Cloud solution.

 

The battleground has expanded:  Every company is vulnerable to a Cyber-Attack 

The fact that highly esteemed organizations in the world like J.P. Morgan, VISA, Yahoo, Blue Cross Blue Shield, T-Mobile, the IRS, the FBI and the stock-exchange giant NASDAQ have had their data exposed and stolen from, should be enough reason for us to re-evaluate whether we indeed have a strong defense against these hazardous blows to our organizations. These attacks often times happen without companies even being aware of it until after the damage is done. 

Also in our region many private and public sector organizations find it difficult to believe they could be a target for cyber-attacks. C-level executives are often not yet quite aware of the dangers that protrude from cybercrime. Our islands in the Dutch Caribbean have been attacked before, and history will keep repeating itself if companies don’t take appropriate action. It is alarming how much of a company’s highly valued data with insights to its financial and operational assets may have already been potentially exposed. 

How can KPMG help?

KPMG as a leader* in Cyber Security has a dedicated team with deep (technical) experiences to help you protect your organization against these highly damaging attacks. Our KPMG’s Cyber Security Services encompass the following major service lines which can be tailored to your requirements and address your specific concerns: 

  • Cyber Security Maturity Assessment: KPMG professionals will assess and benchmark your organisation on six key areas of Cyber Security and will consider the security, availability and confidentiality of sensitive data.
  • Internal Penetration testing: KPMG professionals can simulate a Rogue Employee who is attempting to gain unauthorized access to confidential information on your internal network.
  • External Penetration testing: KPMG professionals will test your network perimeter and identify weaknesses, which can include social engineering techniques, before hackers do. We will examine your email systems, firewall, Web servers and other externally exposed systems.
  • Web Application testing: KPMG professionals can test the robustness of the authentication measures designed to prevent an attacker gaining access to your Client Portal. KPMG can also test your Client Portal to ascertain whether your clients are able to access other clients’ information.
  • Employee IT Security Awareness training sessions: KPMG professionals can provide your employees with knowledge on how to protect your assets and how to identify and thwart common attacks they may be subject to.
  • Investigation and Forensic analysis: KPMG professionals will work closely with you to detect, contain and recover from the Cyber-attack; once this has been done, the team investigate the origin of  the attacks by conducting a forensic analysis. 
  • Employee phishing simulations: KPMG professionals will send your employees a simulated phishing (scam email)  attack on a reoccurring basis, where they will receive an email asking them to, for example, provide their network password based on an agreed upon scenario such as a fake contest.  After each simulation, you will receive a report identifying which employees incorrectly “responded” to the simulation and other relevant data.
  • SOC2 Attestation: KPMG professionals can provide a SOC2 report which provides your organization with an attestation over Security, Availability, Confidentiality and Processing integrity for key financial information systems. A SOC2 report can be given to clients, business partners, auditors and regulators.

*KPMG was recently named a Leader in Information Security Consulting. KPMG International has been named a Leader in the Forrester Research Inc. report, The Forrester Wave™: Information Security Consulting Services, Q1 2016 achieving the highest score for current offering and strategy (tied).

© 2017 KPMG Accountants B.V. a Curacao limited company and member firm of the KPMG network of independent member firms affiliated with KPMG International Cooperative (“KPMG International”), a Swiss entity. All rights reserved.

Connect with us

 

Request for proposal

 

Submit