March 14, 2024
Leadership vs. Management, what exactly are the differences? And what is needed in both areas to meet the current challenges?
The massive Hacker attack on the district administration in Ludwigshafen At the end of October 2022, their digital infrastructure was paralyzed, so that citizens can currently only clarify their concerns personally on site. Our founder Tim was an expert at the radio station SWR3 and gave information about IT security in general and the situation in the public sector in particular.
Tim notes that there are generally very good people in municipalities and administrations who take the subject of IT security seriously and are competent. The problem is that there are too few of these good people to be really well positioned.
If you don't master offense, you don't understand how these people work. Then you can't protect yourself from it.
This problem cannot be solved in the short term. But in the long term, better, centralized training in IT security is an important step, says Tim. For example, there is currently no classic course of study on this content or training as a penetration tester.
Tim notes that the human factor is very important when it comes to digital security. Statistically speaking, technical vulnerabilities are rarely used for attacks. Instead, hackers mostly use social engineering – for example, using phishing emails.
On the one hand, people are the "weakest link" in the security chain. On the other hand, it takes "men-power" with know-how to correctly configure and maintain the corresponding security products. In Tim's opinion, this is even more important when it comes to protecting against cyber attacks than the money factor, which cannot be ignored.
But what happens if, despite all protective measures, a successful hacking attack occurs? Then you need a contingency plan. This is now even available in most companies and authorities, says Tim. But he is usually not sufficiently rehearsed. If the emergency plan is not implemented routinely, mistakes can quickly occur or it may not be possible to implement it as planned.
At the end of the conversation, when the moderator asks Tim for a tip that doesn't cost money, he doesn't have to think twice:
A tip that doesn't cost any money: think before you click!
You can watch the whole interview with Tim on SWR3 here:
Leadership vs. Management, what exactly are the differences? And what is needed in both areas to meet the current challenges?
Should standard users in your tenant be allowed to complete an Azure App Registration? The answer is clearly “no” and this article
The bad news first: In Germany there is no central nationwide emergency number for hacked companies or authorities. That's why it is