Page 24 - index
P. 24
As we talked before, a cyber security can be seen as the process of maintaining an acceptable
level of the risk in cyber terms. So, what would happen if we would make a comprehensive and
systematize set of cyber knowledge and experience and if we would deal using those rules?
Would an application of such a document be capable to put all that risk under control?
It’s getting obvious that such a set of rules would be quite useful in practice and it would support
our intent to prevent some cyber situations to even occur. That document is normally called a
cyber procedure and through this talk we can see its importance in practice.
There are many real-case-scenario situations that could get prevented if an organization has
good cyber procedures. For instance, some suggest that it could be a measure for a reduction
of corruption in some societies.
In a reality, a very high percentage of corruption activities happen in a cyberspace and that’s
exactly the place where you can find an evidence that someone has done that. With a good
cyber procedure, many of those incidents could get prevented, which would consequently
reduce the level of corruption in that environment.
As a case example of the society with a high level of corruption, we would mention a country we
are familiar with – Serbia. That country suffers a complete lack of cyber procedures which
present a great risk to its economy and national budget, because a lot of its companies as well
as small businesses could get a victim of malicious actors, which can be very harmful to its
economy.
For that reason, we strongly recommend the use of cyber procedures in practice, because we
are aware what happens if they fail to get applied.
How to approach a cyber situation proactively?
In practice, we are very often in position to deal with many different cyber situations. Through
that experience, we are learning a lot and also that’s something we need in order to create our
preventive measures.
A prevention scenario is usually a response to a set of the real-case situations. If we deal with
some situation, we will get aware of it existence and we will know how to resolve it. That’s how
cyber procedures work. We are getting them though our experience.
But, what would happen if we could predict a situation before it even occurs? That’s practically a
proactive approach to such a situation. That approach could offer us to always get ahead of
what is happening at that stage and even to keep a step ahead of the threat.
For a proactive approach, it’s necessary to have a deep understating of your field of expertise
which is, in this case, a cyber defense. That’s how you will predict a possible scenario before it
happens and prevent it as well.
Final suggestions
In this article, we attempt to offer a brief overview of the current situation regarding a cyber
prevention that exists in a cyber world. Our aim was to clarify through examples what a cyber
24 Cyber Warnings E-Magazine – January 2015 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
