A Cyber Security Policy is the Cornerstone of an Effective Security Program
Most organisations are actively developing and implementing substantial cyber security programs. Many of these programs are externally focused and aimed at identifying, defending, and responding to cyber attacks. The internal threats posed by an organisation’s employees, malicious or inadvertent, are often given relatively minor emphasis in programs that are reviewed by IBRS.
Part of an effective cyber security response is creating a culture where security is the responsibility of everyone in the organisation. A cyber security policy is a cornerstone of this promoting an employee cyber-aware culture. If organisations do not enact a cyber security policy, they will likely be leaving themselves open to be cyber compromised. This paper sets out to assist organisations in creating a cyber security policy to protect and respond in case of an incident and is based on recommendations by the Australian Cyber Security Centre.
About The Advisor
Dr. Philip Nesci is an IBRS advisor specialising in digital transformation, Cloud strategy and analytics, cyber resilience and risk management, and large scale program management. Philip has an extensive track record as a CIO and an Executive in global commercial organisations such as Shell, Orica and China Light and Power, where he has orchestrated and delivered major organisational transformations enabled by technology. More recently as CIO of Monash Health and the Australian Red Cross Blood Service, Philip has focused on the Health sector and in Government leading a number of programs which have significantly reshaped the customer experience and engagement, underpinned by cyber resilience. Philip’s approach to strategy development and implementation is achieved through strong leadership and extensive engagement with Boards and Executives. Philip’s blend of business and technology experience across a wide range of industries and enhanced by working extensively in Australia, Europe, Asia and the USA, provides him with unique understanding in successfully planning and executing digital strategies to reshape business.