Unabhängige Kompetenz-Plattform
für Integrierte Sicherheit in der Schweiz.

27.03.2019

Shared Goal 4: Keep Everyone Safe and Secure

Destination: Everyone’s identity, assets, reputation and life are protected from cyber-risks through trusted and secure technologies, businesses and institutions along with a culture of cybersecurity and cyberresilience

A safe and secure digital environment is a global public good. Everyone has a role to play in contributing positively to this environment. Progress has been made, but the challenge becomes more difficult with the explosion of IoT and a complex geopolitical backdrop. A world where all individuals have the capabilities to ensure their own security is a world where cyber-risks can be more effectively mitigated and managed.

  • 74% of business can expect to be hacked this year
  • The 2017 WannaCry attack affected 150 countries and institutions
  • Over 4.5 billion records were compromised by malicious actors in the first half of 2018, up from 2.7 billion records for all of 2017
  • Cyberattacks result in annual losses of over $400 billion to the global economy
  • By 2022, 50% of security alerts will be handled by AI automation

Issue overview
Cyberthreats are one of the primary challenges to ensuring we fully harness the benefits of the digital economy. Cyberattacks result in an annual loss of over $400 billion to the global economy. The average cost of a data breach is $3.62 million.

In the first half of 2018, more than 4.5 billion data records were compromised by malicious actors. This translates to over a million records lost or stolen every hour. Beyond data theft or loss, inadequate security puts the integrity of data into question as malicious actors with network access can insert or remove relevant data used for decision-making and industrial processes.

Although criminal activities form the vast majority of cyberattacks, there is a growing trend in nation state intrusions onto critical networks. Such intrusions by states erode both trust and sovereign authority. They also focus the immense resources of states in order to build tools that eventually wind up in criminal hands, exacerbating an already significant threat to businesses and individuals. Finally, these activities significantly threaten innovation itself by depriving peaceful actors of a trusted and dynamic platform for the development of new business and social models.

Given these issues, and the inability of any one nation or company to solve them alone, it is vital to consider security as a global public good and thus act in concert to better ensure safe digital networks. Global cooperation and commitments are needed.

Why does it matter?
Digital connectivity plays a pivotal role in unlocking innovation and prosperity around the world; security provides the foundation for the trust and stability necessary for this to occur. However, the increasing number of cyber-risks presents a major obstacle to our continued and collective path to progress. Even beyond the economic implications (e.g. on intellectual property or financial stability), better security is necessary in order to protect the integrity of a wide range of societal values, such as basic rights, privacy and democratic processes.

Break it down – understanding the problem
Reduce global cyberattacks, contain current and future cyberattacks and deter cybercrime.

Reduce, contain, deter
From a threat perspective, the issue is deceptively simple. There is a need to reduce the number of cyberattacks, contain the severity and reach of current and future cyberattacks and deter future attacks by heightening the risks associated with such activity.

A leadership issue
Those at the forefront of digital-security thinking view cyber-resilience as more a matter of strategy and culture than tactics. Being resilient requires those at the highest levels of companies, organizations or governments to recognize the importance of avoiding and proactively mitigating risks. While it is everyone’s responsibility to cooperate in order to ensure greater cyber-resilience, leaders who set the strategy for an organization are ultimately responsible, and have increasingly been held accountable, for including cyber-resilience in their organizational strategy. For businesses, this means cyberstrategy must be determined at the oversight board level, and must be embraced by the entire organization.

Collaboration is critical
Speaking solely about cybersecurity is insufficient if the challenges of digitalization are to be effectively met. Protection is important, but organizations must also develop strategies to ensure durable networks and take advantage of the opportunities that digitalization can bring. While there are many broader definitions of cybersecurity, there is a difference between cybersecurity and the more strategic, long-term thinking that cyber-resilience should evoke. Additionally, since vulnerability in one area can compromise the entire network, resilience requires a conversation focused on systems rather than individual organizations. New models of cooperation at all levels – industry, national, regional and global – are required to shape shared responses.
Read the complete article in the Report "Our shared digital future"


Security-Finder Schweiz: Newsletter