On the technical side, ‘professional experience in systems and network deployment are essential elements, and staff should know about border security systems, such as firewalls, intrusion detection systems (IDS) and intrusion prevention systems (IPS),’ says Rafa Tenorio, cyber intelligence and incident management/response service coordinator at cybersecurity consulting firm Bidaidea, headquartered in Spain.įamiliarity with identity and access management, as well as network security, can help employees push the zero-trust approach further, says Kok Tin Gan, cybersecurity and privacy partner at PwC Hong Kong.
#Another tomorrow ab iso#
In practical terms, this means that particular skillsets and specific knowledge are needed among staff.Ī solid understanding of data regulations such as the European Union’s General Data Protection Regulation (GDPR) and the ISO 27001 standard of cybersecurity can be useful in protecting data. ‘Staff should pivot from a “trust but verify” mindset to a “never trust, always verify” one.’Īs important as this mindset is, however, it is not enough.Ī zero-trust architecture is an integrated approach to securing enterprise data and resources, and ‘it encompasses identity (personal and non-personal entities), credentials and access management,’ says Marcos Mistretta, a consultant at PwC Spain. ‘The first principle of the approach for accounting professionals is to remove any implicit trust from digital security systems,’ says Watson. Shift in mindsetĪdopting the zero-trust approach may require a shift in corporate and personal mindset. ‘It builds a defence that is ‘perimeter-less,’ alongside protection and trust measures for every aspect of connected networks, devices and other resources,’ says Henry Shek, head of technology consulting – cyber security at KPMG Hong Kong. As a result, the concept of zero trust has been at the heart of the approach to managing sensitive client data,’ says Richard Watson, global and Asia-Pacific cybersecurity consulting leader at EY.Īs accounting and finance professionals are increasingly working online, in part out of necessity due to the pandemic, the zero-trust approach has emerged as an important block of effective defences to combat the growing number of cyber risks. ‘Accounting firms have long been used to remote working, due to client site-based projects.
#Another tomorrow ab windows#
Essentially, it means keeping network doors and windows closed and locked at all times, and opening them up only when needed and then closing them again quickly.
0 kommentar(er)
