3 Sep 2020
From phishing email campaigns to filched administrator credentials, we’ve seen hackers assault systems from all sides. Experts recommend the best defense is a unified front against malicious actors, but what happens when the very place you expect IT security policies from—your leadership team—is actually your organization’s Achilles heel? Ideally, IT security practices run like a well-oiled machine; employees perform “maintenance” (installing patches, updating the system, performing vulnerability checks) on the regular, and authorities within the organization roll out new policies as needed. Effective IT security is composed of different parts that rely on each other to function. This all contributes to minimizing systemic risk, wherein a series of interdependent factors must all function adequately or trigger a widespread collapse. In the case of IT security, where history has shown that all a skilled hacker needs is one pressure point to topple a system, this is especially crucial. Dealing with systemic risk isn’t just relegated to the digital world. It’s up to all members of an organization to ensure their systems remain operational and safe—so why might the higher-ups pose the biggest problem?