TLDR:
- Getting the basics right in cybersecurity posture is key
- Three strategies: mitigate, separate, and positive control
In a recent industry event, cybersecurity specialist Andrew Kirsch highlighted three essential strategies for improving cybersecurity posture for Canadian P&C organizations and their clients. The first strategy, mitigate, focuses on lowering the threat surface by reducing the amount of personal information available to potential threats. The second strategy, separate, emphasizes containing breaches to prevent them from spreading throughout organizations. The third strategy, positive control, stresses the importance of being mindful of the information shared online and implementing basic security measures like complex passwords and multi-factor authentication.
Kirsch also warned about the dangers of leaving sensitive information vulnerable, such as leaving car keys in plain sight, and emphasized the importance of having a clear plan and point of contact in case of a cybersecurity incident. He noted the increasing sophistication of cyberattacks and the need for organizations to prioritize cybersecurity to protect themselves and their clients. By implementing these strategies and staying vigilant against cyber threats, organizations can significantly improve their cybersecurity posture.