How to deal with cyber-attacks: publicly or privately?

/in , , /by

StrategyDriven Risk Management Article | How to deal with cyber-attacks: publicly or privately?Cyber attacks spiked 164% in the first half of 2017, compared to the same period in 2016, entailing 918 disclosed breaches-according reports on broadcaster CNBC. Threats vary from sector to sector. Healthcare, for example, is more susceptible to crypto-locker ransomware like the infamous WannaCry.

Internet-connected consumer devices often fall prey to malware that shackles them to remotely controlled botnets such as Mirai. Varied though the threat may be, and staggering though these numbers are, the word disclosed highlights a central paradox: While transparency contributes to the overall fortification of cyber-security protocols and procedures, battening down the hatches presumably mitigates further financial risk.

Sure, a disclosure is immensely beneficial in terms of buttressing industrial safeguards, national and global security, and customer protection – not to mention mitigating the longer-term repercussions of an attack – but so too can disclosure exact lasting damage on a bottom line.

Fighting back

The nature, intent, and consequences of an attack notwithstanding, the way companies have responded to breaches is closely related to their designation: public or private. CFOs at public and private companies face different risks and pressures when it comes to cyber-security and disclosure, and exhibit divergent perspectives when it comes to preparation.

Broadly speaking, public company CFOs are more likely to outsource cyber-security to third-party firms, while private CFOs tend to invest in in-house IT teams. Regardless of who secures a company’s network, breaches are often known by CFOs before they are made public. By disclosing a breach, CFOs of publicly traded companies might trigger investor panic and sell-off, whereas private company CFOs risk irreparable harm to consumer and employee confidence.

On one hand, foreknowledge of pending disclosures can put unique pressure on public company executives, who often own considerable amounts of company stock. The ongoing federal investigation of three Equifax C-suite managers for insider trading arose due to alleged stock dumping prior to the revelation of the company’s catastrophic cyber-attack.
Equifax underscores the tension between a public corporation’s responsibility to its board, shareholders, and customers, and the financial implications of both the breach itself and legal requirements governing its reporting and remediation.

On the other, while private companies aren’t under the same legal obligations in terms of disclosure, and while the short-term consequences may be less impactful, these companies still face long-term pitfalls, such as lost trust and tarnished brands. Moreover, a medium-sized business may not have the capital or reserves to recover reputationally or financially after a major data breach the way a multinational corporation can.

Additionally, the moderate scale of many private companies sometimes instills a false sense of security. Middle-market businesses often assume they’ll be overlooked by attackers, whether due to a large number of similar companies, or a lack of enticing assets. After all, isn’t it the bigger fish that stockpile the type of data and info that hackers tend to target?

Be prepared

A lack of proper preparation only exacerbates the panic once an attack does occur. Attempting to deal with an attack on the down low can earn private enterprises a reputation as easy marks, and provoke subsequent attacks. Further, if the rearguard strategy backfires, or is exposed by the press, this can amplify the damage to a company’s brand and leadership, not to mention potential legal consequences if a court can prove negligence.

In terms of the bigger picture, the lack of reliable data pertaining to attacks on private companies leads to lopsided analysis regarding the multifaceted aims and motives driving these attacks, resulting in a sort of half-finished portrait of the threat landscape.

While cybersecurity prevention could be vastly improved by greater information sharing, some surveys of CSOs indicate that only one in seven attacks are reported to authorities. Alas, as it stands, adequate event modeling, and risk and security assessments, are being stymied by a lack of shared intel on private company breaches, effectively hampering the development of comprehensive prevention and management strategies.

This lack has precipitated the introduction of numerous cyber-security regulations around the world, and though the regulatory ecosystem is in a state of flux, the global trend is invariably toward greater transparency. CNBC notes that “governments around the world are introducing legislation which will force more companies to disclose data breaches,” a reach that already extends to private enterprises.

Regulatory environment

Both private and public companies are compelled to comply with local, national and global disclosure regulations, including Sarbanes-Oxley (SOX), the Health Insurance Portability and Accountability Act (HIPPA), and the EU’s General Data Protection Regulation (GDPR).

The GDPR, which regulates the collection and storage of customer information and data, and can levy fines of up to €20 million, requires that private companies disclose if they have a footprint in Europe, or otherwise handle the information of European citizens.

In the US, Sarbanes-Oxley (SOX) indexes the responsibilities of both public and private companies, including rules pertaining to compliance with federal prosecutors, and criminal penalties. Further, HIPAA governs how any company, public or private, handles personal health information.

Though public companies, traditionally, may have shouldered an inordinate amount of the fallout from disclosure, this has left them better readied for the implementation of legislation designed to enforce transparency. Even more advantageous, public companies now have hard-won practice mitigating the financial risks and ramifications resulting from disclosure.

Private companies, by contrast, are less aware and agile in terms of prevention and response; protecting their brand, for example, or proactively communicating with clients. Simply put, having been in battle, public CFOs are stepping up and getting more involved with cyber-security, while private CFOs, hovering on the sidelines, appear far more circumspect.

Make no mistake: this problem is only getting worse. The situation could improve rapidly if execs from companies of all stripes and sizes shared details of attacks with the larger corporate community.

Whether you are a CFO of an international, publicly-traded conglomerate, or a mid-sized regional business, it is well within your portfolio to do everything possible to properly prepare for the threat. Engage with the board, secure funding for proper security controls, and encourage leadership to be forthcoming when not if, your company’s cyber attack occurs.

About the Author

Andrew Douthwaite has over 17 years of technology experience joining VirtualArmour in 2007 as a senior engineer. Now as Chief Technology Officer, Andrew focuses on leading growth in the managed security services business and ensuring VirtualArmour is a thought leader in the security industry.

6 Characteristics of Successful Law Firms

/in /by

StrategyDriven Entrepreneurship Article | Successful Business | 6 Characteristics of Successful Law FirmsWhat does it take for a law firm to be successful? Unfortunately, there is no single best way to answer this question. Success can be relative, and it can be pursued in several ways. That said, keep on reading the rest of this post and we’ll quickly list down some of the characteristics that are common in successful law firms.

1. They Provide Timely Services

The timeliness of the delivery of legal services is one of the most important things that will have an impact on the satisfaction of clients. This makes it important for firms to make sure that they can deliver the required outcomes as scheduled. To add, it will also help to use legal billing software to make sure that the invoices will be sent on time.

2. They Embrace Technology

Successful law firms do not hesitate to use technology for their benefit. They consider it as a necessity and not as a luxury. They train their people to embrace innovation instead of resisting them and sticking to conventional methods. A good example of using technology in a firm would be through using software like Rocket Matter, which can improve efficiency and productivity, such as for scheduling and billing.

3. They Put an Emphasis on Diversity

In one article published on the website of Thomson Reuters, it has been noted that diversity will be one of the key differentiators that can affect the success of law firms in the next five decades. This calls for the need to value gender equality in the workplace. Discrimination based on race will also have no place in the firm. In fact, a firm with women and minorities in their roster of lawyers will have a huge advantage in positioning their company.

4. They are Recognized in the Community

One of the easiest ways to measure the success of a law firm would be through how much it is recognized in the community. With this, it is also important for firms to do something that is meaningful for the community, such as having pro bono cases to help those who are unable to access high-quality legal services.

5. They Manage Talent Exceptionally

Like in other businesses, the people are the most important assets of a law firm, making it necessary to have robust talent management practices in place. Every client expects to be working with only top-notch people, so the firm should have the talent to meet these expectations. To add, the law firm must have an effective strategy in attracting and retaining top talent to be competitive.

6. They are the Best Place to Work

At the end of the day, the most important characteristic of successful law firms is that they gain a reputation as the best place to work. This way, they attract the best people to provide exceptional legal service. This is related to what has been mentioned above since this is critical in talent retention.

The success of a law firm is not an easy feat, especially considering how tough the competition is. However, with the things that have been mentioned above, it will be easier for providers of legal services to stand out and improve their bottom line.

Advice For Becoming A Better Entrepreneur

/in /by

StrategyDriven Entrepreneurship Article | Entrepreneur | Advice For Becoming A Better EntrepreneurWhile it’s nice to be able to say that you’re an entrepreneur, it’s an even better feeling to be able to prove to others that you’re a successful business owner. Luckily, you can use the following advice to help you become a better leader and boss so that you can experience a bright and prosperous future.

It’s ultimately up to you and your responsibility to overcome any obstacles you’re facing and improve in areas where you’re falling short. Remain patient with yourself because you’re more likely to develop as time goes on and you gain more experience and expert knowledge of your field and business. Most importantly, follow your passion and try to have a little fun while you’re at it!

Admit to Your Weaknesses

Become a better entrepreneur by admitting to your weaknesses and what you don’t know. For example, you may realize you need a digital marketing plan in place but don’t know the best way to implement one. In this case, work with a company such as Webpresence.Digital that can help your business thrive online by increasing leads, boosting sales and building more brand awareness. It’s not always about being able to perform each task yourself, but knowing who to turn to that can help you achieve your goals.

Learn from Others

Be observant and willing to learn from and listen to others if you want to improve your abilities as an entrepreneur. Be thirsty to take in new information and open to hearing different approaches to solving problems. Find a mentor who you can turn to for input and will keep you on track when you’re unsure of how to proceed in the future. Commit to nurturing long-term business relationships with other professionals and customers as well.

Proactively Manage Your Finances

The financial health of your company is one area you aren’t going to want to ignore as an entrepreneur. You need to know that you’re running a stable company and don’t want to be continuously encountering surprises when it comes to your money. Be proactive about managing your finances by setting budgets and holding regular meetings to discuss the status of your business and your profits. If your schedule is full or you need assistance, hire an accountant or financial director who can help you keep your books in order.

Take Care of Yourself

Another piece of advice if you want to become a better entrepreneur is to take better care of yourself. Running a company is hard work and will require a lot of time and energy on your part. Put your health and well-being first, and you’ll likely find you’re more productive during the day and don’t feel as tired. A few tips include:

  • Following a schedule
  • Eating healthy meals
  • Exercising regularly
  • Managing your stress
  • Getting plenty of sleep

Be diligent about putting your needs first above all else, and you’ll find you’re a lot more pleasant to be around and can reach your goals quicker. While your business is important, so is making sure you have a lot of natural energy and aren’t always getting sick.

Four Ways to Overhaul Your Company Website

/in , /by

StrategyDriven Online Marketing and Website Development Article | Four Ways to Overhaul Your Company WebsiteIf your company’s been around for a while, it’s likely that your website has been, too. If that’s the case, you may well find that design trends, features and styles have moved on from the point at which you dusted off your finished site. The web design world moves fast – and consumer attention moves faster. If customers arrive on your website to the impression that you’ve not updated it for a number of years, they’ll instantly judge you for it. You’ll lose business as a result. As such, here are four ways to overhaul your website in favor of something a little more snazzy, modern and sleek.

Rebrand

While this is not necessarily a web-based overhaul, it is something you should consider if you’re in any case about to entirely change your website’s appearance. A rebrand will echo through-out your website, and as such it’s best to cover both a rebrand and a web redesign at the same time, in the same cohesive process. Get your design team on it immediately, or outsource to de-sign professionals who’ll help you achieve your vision.

Hosting Platforms

The very base – the foundation – of your website is its hosting platform. If you’re about to go through an overhaul, it’s certainly worth considering whether you ought to change hosting providers at the same time. In recent years, cloud hosting has become particularly favored in the web design world – something that you’ll not be using in your current legacy website.

Restructuring

Many companies are so used to their existing website that they fail to recognize some glaring failures in terms of its structural layout. Even if there are no failures per se, the gold standard for webpage and site map layout is always changing, which means your website is almost certainly behind the curve, confusing web users and alienating potential custom. When you overhaul your website, be sure to restructure it in such a way as to smooth all click-throughs and open up pathways for your traffic to pass easily through.

Redesigning

Now it comes to the more visual side of your site’s revamp. Here, you’ll want to go with some of the most exciting design trends to be taking place in 2019. Mini-animations, activated by the scroll function, have become something of a dominant trend for websites in the past year, and continue to dominate the ecosystem for businesses aiming to look ultra-modern and super-slick. Engage with these trends visually in order to bask in the admiration of your site’s visitors.

A Word of Warning

While website overhauls are incredibly important in order to keep your business modern and functional online, you shouldn’t erase your old web pages until you’re sure that your new and revamped website is entirely bug-free. A second word of warning: be sure to bear in mind that repeat customers may be shocked by a very different website appearing when they go to visit yours. Take steps to reassure these customers, and to keep some consistency with the old de-sign.

These four tips – and brief words of warning – should help you conduct a thorough overhaul of your company’s website, updating your appearance and functionality for the trends that are dominating 2019.

How Business Coaching Can Boost Your Profits

/in /by

StrategyDriven Entrepreneurship Article | Business Coach | How Business Coaching Can Boost Your ProfitsIn addition to all the practical aspects of running a business, entrepreneurs are also human beings with problems just like everyone else. These issues may start to affect how well you run your business, or make it hard for you to see where you’re going wrong and what you need to do to correct it. This weakness can become a new business venture for yourself if you take up coaching on the side.
Business coaching is about combining the analysis of the business and how well it’s performing with an appraisal of a client’s thought processes, beliefs, and emotions, and then discovering how one is affecting the other. Sometimes business owners are their own worst enemies, and by pointing out the effect their actions are having a business coach can make a tremendous difference to their personal happiness as well as their profitability.

Accounts analysis

Most accountants will go through accounts at least to some degree with their clients, explaining what the figures mean and how well the business is performing overall. However, as a coach you could be doing far more. Accounting software can produce such detailed and precise reports and forecasts that it’s a waste not to make use of them. You can spot where prices should be changed to maximize profits, lines to drop, lines to expand, and a wealth of valuable information that would increase profitability quite significantly. Rather than just filing your completed accounts, a good business coach could dig deeper into the data and show them where they could be taking action to reduce costs and increase net profits.

Marketing advice

Business owners often struggle with the marketing side of their business. They might have a great product at a perfect price, and still be making little in the way of profit because no-one knows they exist. There are so many elements involved in running a successful marketing campaign, and the tactics that would be best for one business may not be as effective as for another. A good business coach can combine the analysis of a client’s accounts with a forecast illustrating the potential benefits of making changes to your marketing strategy.

Time management

Managing time is critical if you’re to maximize the influence you have on the fundamental workings of your business. It’s not always easy to see where you’re wasting time in your own daily routine, but as a business coach can spot all the ways in which your client could gain time and avoid spending it on tasks they don’t need to.

For example, if they are managing their own website maintenance and backups, as a coach you could point out the advantages of using a managed hosting service like Onyx.io, which would free your client from the bind of performing routine tasks like backing up their site, as well as improving the security. Identifying how they can manage their day more efficiently could not only save them a great deal of time, but improve their working life, as they will be able to focus their attention on more interesting issues like marketing campaigns.

A good business coach is one that helps support a business’ process and its people, making it a very profitable career to get into.