/EINPresswire.com/ Executive and non-executive directors probably may think other more pressing issues on their agendas than to worry about cybersecurity. But if they don’t believe that they and their company are at genuine risk from cyber criminals, they couldn’t be more wrong.

It doesn’t need to be only bank accounts. Company top secrets are similarly attractive as the last incident with Samin Tan, the chairman of one of the world’s biggest mining companies, shows all too well. As reported by The Times Mr Tan was targeted by hackers who disguised themselves as Wikipedia researchers in order to retrieve explosive confidential documents from his computer.

Alan Calder, CEO of cyber security experts IT Governance, warns, “In the information technology era nobody is safe. Those who have power and possess valuable information are even at greater risk of cybercrime. Executive and non-executive directors should be telling the board to improve cyber security and undertake stricter measures right now.”

Calder explains that a more structured and managed approach to cybersecurity is critical in the fight against cybercrime. Encryption, network firewalls and software applications are not enough to ensure data protection.

“Unless security is supported by senior management and implemented at all levels of an organisation, there will always be gaps and inefficiency.” says Calder.

This is where the international information security standard ISO27001 comes into play. It recognises that technology and the risks to information are at the heart of the challenges companies face nowadays. ISO27001 lays down that the ways a company deals with these risks should be decided by the board in the context of its business plan.

Calder adds, “Company executives and chairmen should take responsibility in initiating cybersecurity improvements or they put their own and their company’s reputation at risk.”

Bringing ISO27001 Consultancy team on board is just one of a few possible options to implement an information security management system (ISMS) and improve data security. ISO27001 Certified ISMS training for professional staff is a strategic decision that will bring ROI. Organisations with qualified staff benefit from in-house expertise and better application of security controls.

ISO27001 Certified ISMS training courses can be booked online at www.itgovernance.co.uk/shop/c-264-training-courses.aspx.

An ISO27001 consultancy appointment with the IT Governance Consultancy team can be booked by phoning +44 (0) 845 070 1750 or by email to servicecentre@itgovernance.co.uk.



- Ends -


FOR FURTHER INFORMATION
Desi Aleksandrova Marketing Executive
+44 (0) 845 070 1750
daleksandrova@itgovernance.co.uk

NOTES TO EDITORS

IT Governance Ltd is the single-source provider of books, tools, training and consultancy for IT governance, risk management and compliance. It is a leading authority on data security and IT governance for business and the public sector. IT Governance is ‘non-geek’, approaching IT issues from a non-technology background and talking to management in its own language. Its customer base spans Europe, the Americas, the Middle East and Asia. More information is available at www.itgovernance.co.uk.