What is Cyber Security?

Cyber security is the practice of protecting systems, networks, and programs from digital attacks. These cyber-attacks are usually aimed at accessing, changing, or destroying sensitive information; extorting money from users; or interrupting normal business processes

A successful cyber security approach has multiple layers of protection spread across the computers, networks, programs, or data that one intends to keep safe. In an organization, the people, processes, and technology must all complement one another to create an effective defence from cyber-attacks.

Implementing effective cyber security measures is particularly challenging today because there are more devices than people, and attackers are becoming more innovative.

The definition of cyber security

The definition of cyber security is often confused with the definition of information security.

Information security, often referred to as ‘IT security’, looks to protect all information assets, whether as a hard copy or in digital form.

Cyber security is a subset of information security. It specifically focuses on protecting computer systems and their components – including hardware, software and data – and digital infrastructure from attack, unauthorized access or being otherwise damaged or made inaccessible. Data centers, websites, programes, servers or accounts can all be exploited through a cyber-attack.

In recent years, cyber security has come under intense media scrutiny due to the rapid development of cyber risks in both size and number, and the degree of impact on individuals, governments and organisations. Most well-informed organisations now consider cyber security a critical business issue.

THINGS TO KNOW:

People

Users must understand and comply with basic data security principles like choosing strong passwords, being wary of attachments in email, and backing up data.

Processes

Organizations must have a framework for how they deal with both attempted and successful cyber-attacks. One well-respected framework can guide you. It explains how you can identify attacks, protect systems, detect and respond to threats, and recover from successful attacks. Watch a video explanation of the NIST cyber security framework (1:54)

Technology

Technology is essential to giving organizations and individuals the computer security tools needed to protect themselves from cyber-attacks. Three main entities must be protected: endpoint devices like computers, smart devices, and routers; networks; and the cloud. Common technology used to protect these entities include next-generation firewalls, DNS filtering, malware protection, antivirus software, and email security solutions.