“Large organisations are definitely waking up to the fact that they need to review their ecosystems and understand their risks, as well as the processes and data critical to them,” says Mathieu Gorge, CEO and founder of VigiTrust. “During a crisis, the priority is always going to be continuity, not security. The good news is that you can do both. One way to deal with it is to look at it longer-term and think about your investment in cyber as asset-based – whether it’s logical, physical or intangible, you can put a value on that asset, and put it on your balance sheet.”
This high-profile conflict seems to have been a spur for some contingents.
“A number of organisations have commissioned emergency risk assessments on their infrastructure and ecosystems and have had penetration tests performed on their mission-critical systems to be ahead of the game,” says Gorge. “There’s a lot more demand for training at the moment. And a lot of firms are rethinking how they can train boards and increase collaboration between law enforcement, military and the private sector to protect critical infrastructure.”