Mr. Di Filippo, what do you think constitutes the greatest threat to a company’s cyber security – is it staff?
How important is training for staff?
Is government able or even in a position to help companies better protect themselves in future – or is that a job for the private sector?
It is therefore up to the private sector to protect itself. The main thing is for companies to isolate and cluster their IT systems, so that a successful hack cannot quickly spread and cripple the entire business. The security measures chosen by a company must be technically comprehensive and continually updated – especially with regard to authorised access from outside.
What do you see as the insurance industry’s role in this respect?
Should insurers be involved as well and offer corresponding advice?
Marco Di Filippo has been a computer enthusiast since he was a child, and has worked in IT consulting since 1996 – of which more than 15 years were spent in cyber and IT security, both from the attacking and the defending sides. He specialises in organisational and technical IT security checks and concepts. He has held senior management positions at IT security providers such as VisuKom, Compass Security and KORAMIS.
Marco Di Filippo has been warning companies about the vulnerability of their industrial control systems (ICS) long before cyber attacks became a regular occurrence.
He has therefore played a key role in sensitising people about cyber threats, and in spreading corresponding cyber security strategies.
Mr. Di Filippo is the author of numerous publications and has co-authored several books. In the trade press and on his blog, he regularly writes about weaknesses and breaches in IT security, as well as about the latest developments in the industry.