On Thursday, the fifth of November, Anitech, in conjunction with South East Melbourne Manufacturers Alliance (SEMMA), held a Zoom webinar on The Importance of Information Security in the Workplace. Hosted by Anitech’s director, Anita Patturajan, the webinar provided an interactive forum for business professionals and business owners to discuss various way to protect the information security of their organisation in both the digital and physical environment. It was a fun, informative webinar, with lots of insight being covered on why strong information security is important for business’, and what they can do to keep themselves safe from a host of potential security risks.
Speakers at the webinar were Anitech’s Senior Information Security Management Systems (ISMS) consultant James Paul, and Sreejith Sreekumar, ISMS consultant. With the assistance of a PowerPoint presentation, they gave attendees an informative overview of why it is important for business’ to have strong information security, how an ISMS provides a holistic, unified approach to information security which operates on a principle of continual improvement, and covered some introductory steps that companies can take to keep their information protected, such as upholding their privacy by being very mindful of who is granted access to what data.
They discussed how in order to stay relevant and competitive in a tough marketplace, many business’ now need to demonstrate compliance to the International Organization for Standardization’s ISO 27001 Information Security Standards, as compliance to it demonstrates the company has strong information security protocols, that they keep both their own and client data safe, and that they are safe to deal with.
Paul and Sreekumar explained that due to technology constantly changing and evolving, there is a continuous wave of new cyber threats, and ways in which hackers try to gain unauthorised access to your business data. They discussed intentional cyber threats such as phishing, whaling, data breaches, alongside other ways companies might be at risk, such as by using outdated software and compromised web pages. They noted that business’ are able to significantly minimise their risk of being exposed to these threats, by following some simple security procedures, such as:
- Regularly backing up and protecting confidential, important work information. This means that in the event of a data breach in which data is compromised, the business still retains access to uncompromised data files, which they can easily access to work at restoring things back to normal.
- Implementing simple measures to uphold the three main information security values: Confidentiality, Integrity, and Availability of business information. They went on to explain that this means being mindful of your surroundings, where you access data, and so on. For example, if your business does online banking, be mindful to only conduct transactions in a secure environment, and not on a public Wi-Fi network, which hackers can use to gain access to your data.
Strong Information Security is about preventative measures
Following the main part of the webinar, a Question and Answer session was held, so attendees could raise their queries about business information security, and how it applies to the particulars of their organisation.
One concern that was raised was “Why do I need to invest in information security if I have taken out cyber insurance?”. Paul Explained that an effective ISMS is about preventative measures, as it works at preventing information security threats from occurring in the first place. Insurance, on the other hand, only comes into effect after an incident has already occurred, and just helps business’ financially recover from the fall out. An effective ISMS works hard to ensure it never gets to that stage in the first place, by implementing safeguarding and protection procedures across the business’ entire information security systems.
Another question that was asked was how seriously Australia is taking cyber security, compared to the rest of the world, and whether this is a global issue. It was noted that Australia is a market leader when it comes to effective information security, as the Australian Government is helping many small to medium-sized business’ move into ISO 27001 compliance, by offering significant funding to organisations to help them strengthen their information security.
The speakers discussed how there is a degree of concern amongst Australian business’ regarding how secure the information security protocols are of other companies, and that there is now a culture of business’ saying to each other that “if you want to do business with us, you need ISO 27001 implemented”, which creates a culture of compliance and safety.
The Webinar demonstrated how important information security is
A key discussion point of the webinar is that it only takes one seemingly small information security breach to compromise your entire business, and it may result in significant disruption and downtime, as the organisation works at trying to undo the damage. That is why strong information security is so important, as it demonstrates to other business’, staff, and customers that:
- Your organisation recognises that there is a myriad of potential information security threats out there, and is taking proactive steps to safeguard its operations from them.
- Other business’ can safely deal with your organisation, as ISO 27001 compliance demonstrates a commitment to the highest, safest information security standards, which are safe from both intentional and unintentional security breaches.
- Your organisation recognises that there is a solution for every problem, and by proactively identifying various information security threats, it can take industry certified steps to ensure its data is secured in the safest manner possible.
If you missed our webinar but are still interested to learn more about how an internationally certified ISMS can help your business get the edge, then do not worry, we have a solution. By calling 1300 802 163 you can speak to Anitech’s ISMS consultants, who will be able to talk you through the benefits of having an ISMS at your business, the ways in which it could be implemented in a simple, hassle-free manner, and how it can address any specific concerns you have related to your operations. Doesn’t this sound just as informative as a webinar?
Please click here to read about maintaining strong information security on a strict budget.