Mani MasoodEvery week that passes brings with it a major Cyber Security lapse or data compromise story with it. IoT stands for Internet of Things and refers to the network and devices that communicate with each other with no or minimum human interaction for automation of tasks.
This week, CIO is reporting, that many IoT devices are most unreliable and insecure when it comes to cyber security. This is an alarming concern as we gradually move to a more interconnected home appliance environment. Imagine an Equifax or Facebook level security breech where A/C, microwave, and refrigerator access of more than 100 million Americans get get compromised. Now imagine a threat vector where every a large majority of those compromised loose their A/C during the summer months, while there microwaves are turned on remotely to run till burnout. Within 15 minutes the havoc, fires and outright ciaos that will follow will be unprecedented.
Debate, discussions on IoT security is of extreme importance. As free flow and exchange of ideas evolves onto standards and procedures of future. Having said that, while getting the word out is important, it seems to have no effect on the prevalence of Cyber Security incidents.
As CIO Magazine, concerns about securing the IoT have not stopped firms from implementing the technology. Fueled by the potential of IoT to help reduce costs, improve efficiency, and provide more visibility into all facets of operations, manufacturers continue to push plans to roll out connected IoT technology.
Manufacturers and consumers cannot afford to be complacent about IoT deployment anymore. Unsecured IoT devices leave enterprises vulnerable to data theft, physical damage, revenue loss, reputational damage, and more.
Concurrently, IoT offers many benefits around efficiency, productivity, and innovation, and companies cannot afford to hold off indefinitely on deploying IoT technology. Inaction carries its own serious risk of losing ground to competitors that act more quickly to seize the advantages of IoT.
Therefore, the best approach is to deploy IoT carefully by using disciplined processes to minimize danger followed up by a comprehensive quality assurance and technology audit processes.
Determine which parts of the business might be most vulnerable or exposed to attacks on IoT devices. Start by compiling a full inventory of IoT devices deployed throughout the organization. Then, assess the extent to which these devices pose a risk to various enterprise platforms, networks, and cloud integrations. Prioritize securing IoT devices where hackers can cause the most mayhem if they manage to find access.
Most importantly build a collaborative, multi-layered defense mechanism.
In reality, I am beginning to believe that increased coverage is having the contrary effect on businesses and professionals. It has normalized Cyber Security incidents, and has made us unconcerned.
If large enterprises and even nations are not safe, how can individual defend against this threat.
Imagine if we were this lax towards company’s inventory or even organizational assets.
In my view one of the reasons why Cyber Security is facing this challenge, is due to company’s operational attitude towards Cyber Security. We say we are serious but we don’t act it.
Due to recent events, I do think things are changing but we are far from a zero-tolerance and zero-comprise world.
As long as the likes of Facebook breeches and Equifax compromises do not generate either sever penalties and fines and relentless prosecution we will continue to see an increase in major security breeches, and throwing IoT in the mix is going to take the risks to a whole new level.
It is do able, it is not costly and it should be part of the enterprise architecture and DNA from day one.
I am a Cyber Security professional and a tech enthusiast. Feel free to reach out to me. If you want to read more similar stories please feel free to click here.
To check the original story Click here
MMasood
