Information security plays a central role in current business ecosystems and is a strategic topic for the continuity and development of any organization.
Trust has become a new development pattern in which Information Security is essential for sustaining the future economy. Security and Privacy, combined with Risk management and Compliance, are constitutive elements of the so-called pillar of Trust. According to IDC, by 2025, of the Fortune 100, 40% will require trust scores to do business with others.
The need for objective metrics and structured practices puts pressure on organizations top management. There is still a long path in terms of Information Security :
- Every 11 seconds, an organization fell victim to a ransomware attack in 2021
- DDos (Distributed Denial of Service) attacks increased by 180% from 2018 to 2019
- 95% of companies report that there is a gap between a cybersecurity-oriented culture and the current culture
In this context, a shift in information security approach is highly needed to cope with this challenge. What should be Organizations’ directions in this critical domain?
The paradigm shift from information security to a vision of cyber-sustainability calls for a more integrative approach.
Companies should look at Information Security in a more systematic way not only within their organization, but also outside their boundaries with their Customers, Suppliers and Critical Business Partners information flows .
On one hand, organizations must apply good practices and references, such as ISO 27001, systematize risk oriented processes and implement a path of continuous improvement.
On the other hand, they should approach this domain through a collaborative positioning, analyzing not only information flows across the organization, but also in their ecosystem, an integrated way, reinforcing controls in line with their Customers and Partners.
These two vectors will be strategic for the future of Trust in business: (1) ISO 27001 standard implementation as a reference in this domain and (2) A collaborative approach application of ISO 27001, towards a culture of security across business ecosystems, working closely with Customers and Partners.
At SHIFT, reflecting our commitment to Information Security, we have concluded the ISO 27001 certification process at the end of 2021.
Following the principles of collaborative frameworks, we develop relationships with strong ties, focusing on our Customers, with a partnership perspective. In the Information Security area, we extend these practices working together with Customers, towards a context of trust for the business development.
Contact SHIFT and learn more about our practices and collaborative approach.