Business owners rather than IT are often the stewards of data so having a big data security plan in place is critical, according to NBN security risk and assurance general manager Graham Thomson.
Speaking at CeBIT in Sydney, Thomson told delegates that reputation is always a big thing for organisations.
“Companies don’t want to have that reputation of having poor governance,” he said.
Firstly, Thomson said that companies need to understand the value of their data and assign someone to be a business owner of that information.
“This is so they can have responsibility over how well data is being protected,” he said.
“Understand your environment, both the current and future environment. When you understand your current environment, you will know what your vulnerabilities are and the risks you are facing.”
Companies should also have remediation programs in place to treat cyber security risks.
“The executive level need to be informed and there should be a constant feedback loop where the business process owners have the ability to understand what is happening down at the infrastructure layers,” Thomson added.
Big data is another challenge that requires good governance, risk and controls, he said.
“However, you do need to be able to move with the business at the same time. You need to be as agile as the business folks otherwise they will just do it [big data] anyway and that creates those challenges.”
Follow Hamish Barwick on Twitter: @HamishBarwick