Have you ever been traveling by plane or commuter train and caught someone reading your tablet or mobile device over your shoulder?
For the most part, I’m cool with this. It’s not like I read anything particularly sensitive most of the time. But there are instances when I might fire up the old work laptop to do a quick scan of business emails or check (again) on my holiday arrangements (passports, bank account, house alarm, etc). How do I feel about prying eyes then? A little less than comfortable.
Now imagine those same prying eyes peeking over your enterprise’s shoulder and taking a look at the content and data that run your business. That should definitely set off some alarm bells.
With recent news about TalkTalk, Sony and other major media companies being the victim of cyberattacks, the industry as a whole has been put on high alert. A 2015 survey showed that 52% of news media companies around the world have been either hacked or suffered a data breach since the beginning of 2014, and 65% have increased their focus on cybersecurity as a result.
There’s a reason security has been thrust to the forefront, and that’s the almighty dollar. Losses from the Sony hack were estimated at $100 million (and for a fascinating look at how the attack wrecked the day-to-day workings of the company, check out this great Slate piece). And TalkTalk has lost 100,000+ customers and faces losses of more than $80 million. That’s a lot of money!
Media organizations simply cannot afford to take risks when the costs are so high. But there are ways to stave off hack attacks. And believe me, the upfront cost of protection is way lower than the price of a hack.
A starting point is Privacy Impact Assessment (PIA), a tool used to identify and mitigate privacy risks.
We recently worked with media company that benefited from the tool. The UK-based firm carried out a PIA after experiencing a personal data loss at U.S. offices. CSC consultants conducted an on-site audit to evaluate the safeguards in place and make recommendations about how to improve security. Consultants then tracked the progress of those changes to make sure the protections were put in place. The result was a sigh of relief for the company, which now knows it is adequately safeguarding client’s personal data.
Of course, protecting data is not a battle, but a war, and companies must stay vigilant in the fight against threats. Or, I suppose, grow taller shoulders.
Who do you think is looking over your company’s shoulder and how are you going to stop them?
As always, I welcome your input on how to approach changes and challenges in media. If you think I’ve misread a situation or trend, let me know. If you have a new way of thinking about the topics we discuss, pass it on. I want to engage with all of you in this space as together we make sense of today’s media industry.
Scott Dryburgh joined CSC in 2015 as the Industry Lead for Media with responsibility for UK projects in broadcast, publishing, advertising and entertainment. Prior to joining CSC, he worked across a broad range of clients and was responsible for transforming multi-faceted businesses using a creative and entrepreneurial approach.