IHF Cyber
IHF Cyber provides a human focused approach to cybersecurity which can support technical cybersecurity solutions to ensure the security of your entire system.
Humans are a key element of your cybersecurity system but are often not adequately considered. Instead, the focus is traditionally on technical solutions to cybersecurity. As a result, humans are often considered the ‘weak link’ and are targeted through social engineering, phishing attacks etc, where technical solutions alone are inadequate.
IHF’s Cyber solution considered all aspects of the system (human & technical) at an organisational and individual level, using the following 3 nodes
- Through the use of established industry tools, we can assess where your organisation sits in terms of culture and behaviours related to cybersecurity. This analysis can then be used to set a baseline score that can be tracked along with other KPIs. The analysis can also identify areas of focus to improve your organisations overall cyber risk.
- For example, do personnel see cybersecurity as solely ITs responsibility? If so, we can develop interactive awareness sessions to communicate the need for everyone to take responsibility.
- By taking a view of the entire system including the human and technical elements we can identify the biggest cybersecurity risks and provide mitigations.
- For example, are personnel providing workarounds to security policies and procedures in order to meet tight timelines? We can identify this and help you to ensure these policies and procedures can be seamlessly implemented without impacting productivity.
- Do your incident investigations often identify the root cause of a cyber breach as ‘human error’ and stop there? Using techniques and skills developed from working in several high-risk industries such as aviation and nuclear, as well as cybersecurity, we can understand the physical, psychological and organisational factors that lead to this error. From these, appropriate targeted mitigations can be implemented to address the actual root cause.
- For example, was the error attributed to your cybersecurity staff due to burnout? We can help review and balance the workload to reduce risks related to burnout.
Cybersecurity Culture Analysis:
through the use of established industry tools, we can assess where your organisation sits in terms of culture and behaviours related to cybersecurity. This analysis can then be used to set a baseline score that can be tracked along with other KPIs. The analysis can also identify areas of focus to improve your organisations overall cyber risk.
As well as investigating specific incidents within your organisation we can review incidents that happen across industries and feed learning from these back into your organisation to ensure you are protected against the latest threats.
These 3 nodes can be applied as a package or individually according to your business needs. We also offer tailored solutions, to fit individual requirements.