7 RESILIENCE LEVERS
Business Model &
Workforce Transformation
Efficiency and effectiveness:
Driving change across the business cycle.
7 RESILIENCE LEVERS
Operational &
Financial Resilience
Establishing new strategies to withstand the pandemic shock.
7 RESILIENCE LEVERS
Digital Trust
& Ecosystems
Managing digital risks in a heightened threat landscape.
7 RESILIENCE LEVERS
Escalation Planning
& Response
Contingency planning and flexibility make
crisis response a reflex rather than a reaction.
7 RESILIENCE LEVERS
Remediation &
Dispute Resolution
A growing wave of investigations and disputes
will challenge business across all sectors.
7 RESILIENCE LEVERS
Government &
Stakeholder Relations
Shifting political and societal values
mean new rules of engagement.
7 RESILIENCE LEVERS
Economic Impact
& Sustainability
Resilience and Sustainability:
Two sides of the same coin?
7 RESILIENCE LEVERS
Real-Time Data
Analytics
Data is the lifeblood of resilient businesses

Digital ecosystems sit at the heart of global commerce, and have been instrumental in our adjustment to COVID-19.

Workforces shifting to remote environments, and increased reliance on technology, have forced comprehensive adoption and integration of technologies into personal and working lives. Such rapid and widespread implementation is, however, fraught with risk. As their digital capabilities grow, resilient businesses must also build trust in those capabilities.

More than

6 in 10

G20 companies are experiencing a heightened level of threat from insiders

Across G20 respondents, an estimated

$18bn

of revenue was lost as a result of cyber attacks in 2020

THE DIGITAL THREAT LANDSCAPE

The accelerating rate of change in digitisation is happening in parallel with a broadening of the cybersecurity threat. Organisations are facing risks from nation states, organised criminal groups, “hacktivist” campaigns and terrorists. 60% of business leaders said they are concerned by the prospect of nation state cyber attacks in 2021.

On the other end of the cyber risk spectrum are insiders. Prior to the pandemic, insider threats posed significant risks to all organisations. However, as working remotely quickly became the norm, this risk increased. As a result of COVID-19, 60% of G20 companies are experiencing a heightened level of threat from insiders.

Cybersecurity is moving even more to the forefront of corporate agendas. Because of the significant risks and potential costly damage from cyber incidents, online is the new frontline. As expected, 3 in 4 companies have seen cybersecurity become a greater priority as a result of COVID-19.

PREPAREDNESS VS RISK

The key to both responding to and recovering from a cybersecurity incident is resilience. Compared to competitors, organisations that make resilience a priority will be less at risk of a breach.

Failure to build cyber resilience can lead to significant business impacts and cost. Across the G20 respondents, roughly $18bn of lost revenue in 2020 can be attributed to cyber attacks alone.

Only one-quarter of G20 organisations surveyed were not negatively impacted by a cyber attack in 2020. Data from the Resilience Barometer™ indicates that negative impacts from cyber attacks have increased in several areas when compared with 2019.

With the sudden need to pivot to a remote work environment, many organisations relied on shadow IT systems that were spun up quickly to maintain business operations with minimal security considerations. More than a third of G20 companies said that this is a concerning risk in a post-COVID world.

The pandemic has altered the threat landscape, and as a result, organisations will be obliged to address workforce cybersecurity in new, more flexible ways. Due to COVID-19, 49% of G20 businesses are expected to update their response plans, and the same percentage also plan to identify potential crises and assess crisis readiness.

Indeed, only 3% of G20 organisations are not preparing in any way for crises. When the difference between working towards cyber resilience or staying put can be devastating, these organisations are playing a risky game.

0%
of G20 companies lost customer data as a result of cyber attacks in 2020
0%
of business leaders say they are concerned by the prospect of nation-state cyber attacks in 2021
0%
of G20 companies say cybersecurity has risen up the board’s agenda as a result of the pandemic
PROTECT
Today’s threat landscape is evolving rapidly: for example, remote working may dictate an increased reliance on employee diligence, together with some acceptance of temporary IT solutions that are installed without assessing vulnerabilities. A cybersecurity risk assessment is key to protecting your business, employees and technical infrastructure.
ADAPT
Cybersecurity policies, processes and procedures must adapt to new working practices. Consider how your threat profile has changed, whether the incident response plan is compatible with remote working, and how far third-party suppliers comply with cybersecurity policies.
COMPETE
Given the inevitability of cybersecurity incidents, the entire workforce should be recruited to build cyber resilience. Increasing the maturity of the cybersecurity approach in this way will create competitive advantage by positioning the business to seize new opportunities and grow securely.

Perspectives

The Anatomy of a Crisis #3 – Cyber Breaches

READ MORE

COVID-19: New Cyber Threats

READ MORE

Not If But When: Building Cybersecurity Resilience to Secure Competitive Advantage

READ MORE
Anthony J. Ferrante
Global Head, Cybersecurity
Sonia Cheng
Head of Information Governance & Privacy, EMEA

EXPERTS WITH IMPACT

GET IN TOUCH