Organisations are facing sophisticated and advanced persistent threats (APT) that are targeting sensitive information assets. Any form of cyber-presence can be typically attacked by adversaries, and the motives of such attacks are context dependent. Besides, users and organisations are prone to software vulnerabilities, misconfigura-tions, outdated systems and several other systemic deficiencies which can be leveraged to compromise enterprise assets and gain an initial foothold within an organisation network. The aim of the pa-per is to develop a flexible and generally comprehensive organisa-tional strategy to defend against the massive increase in cyberat-tacks, in order to protect the strategic business objectives of an or-ganisation and keep an alignment between business objectives and security. Moreover, this paper reflects on the work undertaken by multiple teams within the chosen case study organisation to enhance the cybersecurity.
|Publication status||Accepted/In press - 21 Feb 2021|
|Event||VIRTUAL 13th International Conference on Global Security, Safety & Sustainability
- London, United Kingdom|
Duration: 14 Jan 2021 → 15 Jan 2021
|Conference||VIRTUAL 13th International Conference on Global Security, Safety & Sustainability|
|Period||14/01/21 → 15/01/21|