Tag Archives: Ethical Hacking

“Cyber attack fears delaying business innovation” reveals HackerOne survey

A survey conducted by HackerOne has revealed that IT projects are being stifled due to security concerns. More than 80% of UK CISOs and CTOs who were interviewed revealed software IT projects have been hindered due to concerns over inevitable security issues. 90% also agreed that software vulnerabilities pose a significant risk to their organisation.

“Organisations need to find a balance between driving innovation and keeping data safe,” said Laurie Mercer, security engineer at HackerOne. “It’s not surprising that fear around cyber security is hindering this, but by moving beyond traditional cyber security strategies, businesses can start to feel empowered. When I started writing code, new releases of software would take six months to develop and test. Today, new software is released every hour. This new pace of innovation poses a problem for security teams but, by implementing a strategy that supports continuous security, businesses can ensure they’re on alert for any vulnerabilities that software might have. The key is to ensure that security is constantly evolving.”

CISOCIOCyberAttack

Manpower and budgets are also a key concern for security professionals, with 63% believing security team resources are not able to keep up with the pace of development. Lack of budget and other resources including skill sets were also cited as key barriers to creating a well-rounded cyber security strategy by over a third of respondents.

Despite the significant number of concerns around vulnerabilities and limited resources, the survey highlighted that 62% would rather accept the risk of software vulnerabilities than invite unknown hackers to find them, while 63% say they’re only comfortable accepting bug submissions from vetted hackers.

A HackerOne customer and CISO of an international health and beauty retailer said: “I understand first-hand the nature of remaining cautious. As we all know, though, traditional cyber security methods alone are not sufficient. CISOs find themselves in a tricky position, needing to embrace innovation, but while ultimately remaining responsible for cyber security. The security landscape is ever evolving so we need to approach defensive strategies in the same way. By working with ethical hackers, it gives organisations the freedom to work on new projects, spin-up new applications and try different ways of working, while at the same time there’s peace of mind that continuous and ongoing testing is taking place. With ethical hacking, these vulnerabilities can be fixed immediately.”

The research was conducted by Opinion Matters and included input from 200 UK CISOs and CTOs. The findings revealed what CISOs believe to be the biggest risks to businesses, which areas are hindering growth and what kind of technology respondents are likely to implement in order to overcome these challenges.

Leave a comment

Filed under Risk Xtra

UK education technology firm takes lead in cyber security training thanks to formation of new partnership

Education technology firm e-Careers Limited has formed an exclusive partnership with EC Council to deliver cyber security training to professionals nationwide. Having trained over 200,000 information security professionals globally – including representatives from the US Army, the FBI, Microsoft and the United Nations – EC Council offers certifications in ethical hacking, security analysis and network defence.

Now, in an exclusive partnership, e-Careers becomes the only authorised partner across the UK and Ireland to deliver the complete range of online EC Council Cyber Security and Ethical Hacking accreditations, including its Certified Ethical Hacker (CEH) and Computer Hacking Forensic Investigator (CHFI) programmes.

EthicalHackingJazz Gandhum, CEO of e-Careers, confirmed: “Cyber security is an advancing threat to businesses and organisations globally. The recent WannaCry and Petya cyber attacks penetrated businesses, banks, airports, Government departments and health services across multiple locations worldwide, not forgetting the UK’s very own National Health Service. This increasing threat has resulted in a growing demand for cyber security professionals, with recent reports revealing the number of roles advertised in the UK is at the third highest worldwide. Considering this advancing skills gap, e-Careers is delighted to bring all EC Council online courses to the UK, and will be working hard to help increase cyber security skill sets, knowledge and understanding.”

Taken over by Jazz Gandhum in 2011, e-Careers is one of the UK’s leading ‘edtech’ firms, providing access to over 600 courses across a range of industry sectors through its innovative e-learning platform.

Having educated more than 400,000 individuals over the past six years alone, the business has formed partnerships with over 75 key organisations, including awarding bodies, colleges and private establishments with a view towards making education affordable and accessible to the masses.

Sanjay Bavisi, CEO and president of the EC Council, added: “We’re delighted to have formed this new partnership with e-Careers and look forward to the opportunity this now presents for professionals right across the UK. Every day, cyber security threats grow with professional hackers advancing their knowledge and making digital inroads at an exponential and alarming rate. The only way in which to combat cyber security threats is through knowledge and education. Thanks to our new partnership with e-Careers, we’re confident that more and more professionals will be able to quell this risk, making the digital world a safer and stronger environment.”

*All EC Council courses offered through e-Careers’ e-learning platform are accessible online, making cyber security training both convenient and cost-effective. For more details visit www.e-careers.com

Leave a comment

Filed under Risk UK News