Scientific and practical cyber security journal | ISSN 2587-4667

A HOLISTIC APPROACH FOR CYBERSECURITY IN ORGANIZATIONS

Authors: Satwinder Singh Rupra
Affiliation: Masinde Murilo University of Science and Technology

Category:

cyber security
Keywords: Cybersecurity strategy, Security-as-a-Service (SECaaS), Cybercrime, defence mechanisms
ABSTRACT. In today's digital age, organizations face an unprecedented array of cybersecurity challenges, ranging from sophisticated cyber threats to regulatory compliance mandates. This paper presents a comprehensive examination of cybersecurity strategies aimed at fortifying organizational defences and safeguarding sensitive data. The paper begins by delineating the evolving threat landscape, highlighting the prevalence of cyberattacks such as phishing, ransomware, and social engineering. It underscores the critical role of human factors in cybersecurity and advocates for regular user training to cultivate a culture of security awareness within organizations. Subsequently, the paper delves into the importance of effective policies in managing cybersecurity risks and ensuring regulatory compliance. Furthermore, the paper explores advanced cybersecurity technologies, specifically Unified Threat Management (UTM) and Security-as-a-Service (SECaaS), as integral components of a comprehensive defence strategy. Lastly, the paper concludes by advocating for a holistic approach to cybersecurity that integrates human-centric training, policy frameworks, and advanced technologies. It underscores the importance of recognizing technology as an enabler rather than a panacea, emphasizing the need for proactive measures to mitigate cyber risks and protect organizational assets. By adopting a multi-faceted cybersecurity strategy organizations can bolster their defences, mitigate risks, and safeguard sensitive data in an increasingly hostile digital environment.
 Read full paper

References:

Aboaoja, F. A., Zainal, A., Ghaleb, F. A., Al-Rimy, B. A. S., Eisa, T. A. E., and Elnour, A. A. H. "Malware Detection Issues, Challenges, and Future Directions: A Survey." Applied Sciences 12, no. 17 (2022): 8482
Chirayath, S. S. "Insider Threats and Strategies to Manage Insider Risk." In Human Reliability Programs in Industries of National Importance for Safety and Security, 51-59. Singapore: Springer Nature Singapore, 2023
Cisco/Cybersecurity Ventures. 2022 Cybersecurity Almanac. Cisco/Cybersecurity Ventures, 2022
Ghafir, I., Saleem, J., Hammoudeh, M., Faour, H., Prenosil, V., Jaf, S., and Baker, T. "Security Threats to Critical Infrastructure: The Human Factor." The Journal of Supercomputing 74 (2018): 4986-5002
Hatzivasilis, G., Ioannidis, S., Smyrlis, M., Spanoudakis, G., Frati, F., Goeke, L., and Koshutanski, H. "Modern Aspects of Cyber-Security Training and Continuous Adaptation of Programmes to Trainees." Applied Sciences 10, no. 16 (2020): 5702
Havler-Barrett, C. "Mexico’s Truth Stares Down Barrel of a Gun." Index on Censorship 51, no. 4 (2022): 16-20
Horak, G. "Personal Details Exposed: Spyware and Human Rights in the Middle East and North Africa." PhD diss., Harvard University, 2023
Huang, K., Siegel, M., and Madnick, S. "Cybercrime-as-a-Service: Identifying Control Points to Disrupt." Tech. Rep., Massachusetts Institute of Technology (MIT), 2017
Hunker, J., and Probst, C. W. "Insiders and Insider Threats-An Overview of Definitions and Mitigation Techniques." J. Wirel. Mob. Networks Ubiquitous Comput. Dependable Appl. 2, no. 1 (2011): 4-27
Hyslip, T. S. "Cybercrime-as-a-Service Operations." In The Palgrave Handbook of International Cybercrime and Cyberdeviance, 815-846, 2020
Kshetri, N. Cybersecurity Management: An Organizational and Strategic Approach. University of Toronto Press, 2021
NIST. Data Breach Investigations Report. Verizon, 2019
Ochmann, J. "The Logic of Security." Security Dimensions. International and National Studies 33 (2020): 189-216
Olawale, O., Ajayi, F. A., Udeh, C. A., and Odejide, O. A. "Remote Work Policies for IT Professionals: Review of Current Practices and Future Trends." International Journal of Management & Entrepreneurship Research 6, no. 4 (2024): 1236-1258
Padmaraju, A. K. Future-Proofing Security: AWS Security Hub and Service Now Integration, 2024
Pureti, N. "The Rising Tide of Malware: Protecting Your Organization in 2024." International Journal of Advanced Engineering Technologies and Innovations 1, no. 3 (2024): 420-448
Rotich, E. K. "Cyber Terrorism and National Security in Africa: A Case Study of Kenya." PhD diss., University of Nairobi, 2020
Sarre, R., and Prenzler, T. "Australian Public and Private Crime Prevention Partnerships in Cyberspace." In Handbook on Public and Private Security, 85-102. Cham: Springer International Publishing, 2023
Singh, L., and Singh, R. "Comparative Analysis of Traditional Firewalls and Next-Generation Firewalls: A Review." In Latest Trends in Engineering and Technology: Proceedings of the 2nd International Conference on Latest Trends in Engineering and Technology (ICLTET 2023), July 13-14, 2023, Mohali, India. CRC Press, 2024
Sophos. The Rise of Financial Trading Fraud. Sophos Security Report, 2023
Umbach, R., Singh, A., and Walker, A. "“Your Protection Is in Your Hands Only”: User Awareness and Adoption of Privacy and Security Practices in Five Majority World Countries." Journal of Online Trust and Safety 2, no. 1 (2023)