Why Data Protection And Cybersecurity Can’t Be Separate Functions
Companies often separate cybersecurity and data protection by forming two independent teams and buying different software to address each of these issues apart. Maintaining and managing two teams, together with two software sets, involves high IT costs and administrative expenses.
Why do companies separate cybersecurity and data protection? To answer this question, let’s take a look at these two incidents.
Recently, a ransomware attack hit UHS, a healthcare provider operating 400 facilities. Ryuk, a ransomware strain known for targeting big organizations, is suspected to have been used during the attack. Luckily, no personal records were compromised during this security incident.
Let’s take a look at another case. Town Sports International, a fitness chain, exposed the personal information of more than 600,000 customers and staff members. The reason behind the breach was insufficient server protection, which allowed unauthorized access.
Indeed, these two stories may be considered to belong to independent fields — cybersecurity and data protection. Since data threats belong to different areas, the methods to prevent such threats should be different as well. That’s the logic that often determines corporate IT strategies and their elements, such as team recruiting and choosing software.
Source: Forbes