Menu
​Are Kiwi organisations over-investing in basic cyber security measures?

​Are Kiwi organisations over-investing in basic cyber security measures?

New Zealand businesses are going digital, but many are struggling to cope with the consequences a digital business model is having on their cyber security risk profile.

New Zealand businesses are going digital, but many are struggling to cope with the consequences a digital business model is having on their cyber security risk profile.

As a result, many are relying on basic penetration tests, without developing a comprehensive security strategy.

That’s according to recent PwC findings, which tracks the transformation that digital business models are bringing to local companies, and the impact this is having on cyber security efforts.

“It’s heartening to see the change in perceptions among businesses in their approach to cyber security,” PwC New Zealand partner and cyber practice leader, Adrian van Hest, said.

“However, leaders are struggling to fully grasp the breadth of cyber risks their organisations face and the value of the data they are gathering, let alone translating awareness into action.

“Companies that are making this transition to a digital operating model have to make cyber security central to their transformation efforts.”

Cyber spending

Compared to the rest of the world, Kiwi businesses are lagging in the amount of spending they are directing towards cyber security.

Van Hest said these efforts are also focused more towards basic measures like penetration tests, at the expense of those that are more likely to address the insider and partner issue, such as comprehensive identity management systems and tighter control over administrator privileges.

The uptake of managed security services, for example, is almost half that of Australia (44 per cent compared to 78 per cent).

At the same time, the origins of cyber attacks are becoming more diverse, with respondents twice as likely to report security breaches that originate from their business partners, compared to last year’s findings (21 per cent compared to 10 per cent in 2016).

“A major concern is the focus on only a narrow range of methods to detect cyber security weaknesses,” van Hest added.

“New Zealand companies are over-reliant on very basic penetration tests, and less focused on understanding their risk, let alone more advanced analytics and how to respond when something actually happens.”

Blurring the lines

The rise of digital businesses, mass adoption of cloud technology and the increasingly complex network of relationships with customers, employees and supply chain partners have all blurred the lines of traditional cyber security.

As a result, New Zealand companies are struggling to respond to the added complexity - only 29 per cent of local firms evaluate the security of third-parties, despite suppliers and business partners being the fastest-growing source for cyber attacks.

Likewise, employees were the single largest source of cyber security breaches, yet organisations are still focusing on external threats.

“Rather than trying to ring-fence their organisation, companies now have to develop a proactive security approach across their entire digital presence,” van Hest added.

“That means holding suppliers accountable for breaches, addressing the risk from employees and treating customer data privacy as a competitive advantage.

“Every organisation’s cyber security approach has to begin with understanding their risk profile. Only then can they develop a strategy to protect their assets, detect when they experience a breach and then respond and recover effectively.”


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags digitalPwC

Featured

Slideshows

Leading female front runners of the Kiwi ICT industry honoured at 2019 WIICTA

Leading female front runners of the Kiwi ICT industry honoured at 2019 WIICTA

Reseller News has honoured the leading female front runners of the New Zealand ICT industry at the 2019 Women in ICT Awards (WIICTA) in Auckland. The awards recognised standout individuals across six categories, spanning Entrepreneur, Rising Star, Shining Star, Community, Technical and Achievement. Photos by Gino Demeer.

Leading female front runners of the Kiwi ICT industry honoured at 2019 WIICTA
Reseller News kicks off awards season in 2019 with Judges' Lunch

Reseller News kicks off awards season in 2019 with Judges' Lunch

The 2019 Reseller News Innovation Awards has kicked off with the Judges Lunch in Auckland with 70 judges in the voting panel. The awards will reflect the changing dynamics of the channel, recognising excellence across customer value and innovation - spanning start-ups, partners, distributors and vendors. Photos by Christine Wong.

Reseller News kicks off awards season in 2019 with Judges' Lunch
Reseller News welcomes industry figures for 2019 Hall of Fame lunch

Reseller News welcomes industry figures for 2019 Hall of Fame lunch

Reseller News welcomed 2018 inductees - Chris Simpson, Kendra Ross and Phill Patton - to the third running of the Reseller News Hall of Fame lunch, held at the French Cafe in Auckland. The inductees discussed the changing landscape of the technology industry in New Zealand, while outlining ways to attract a new breed of players to the ecosystem. Photos by Gino Demeer.

Reseller News welcomes industry figures for 2019 Hall of Fame lunch
Show Comments