By Lothar Geuenich, Regional Director Central Europe at Check Point Software
Lothar Geuenich, Regional Director Central Europe at Check Point Software Technologies GmbH
For many company managers, IT security is primarily just a necessity, the financial costs of which are at the center of the considerations. But IT security can be an important factor in making a company more profitable, because increased IT security does not slow down the business, but it makes it possible.
If a company becomes the victim of an attack, this not only has a high financial cost, but also damages the reputation of the company, which is particularly difficult. Business is created by trust, which is why partners and customers must have such trust in the company’s solutions, products and services.
Good IT security is the basis for new business models and increased profitability in times of digitization. For example, the company can move its data from expensive, on-premises data centers to a secure cloud service with significantly lower costs. This offers a high degree of flexibility and the possibility of using data intelligently and cooperatively, which in turn forms the basis for better services and new business opportunities. Companies can then also use tools that automate security processes and reduce human errors, and thus achieve more efficient operation, which in turn puts us in IT security. Without adapting and providing them, the transition to the cloud cannot be done safely and the benefits cannot be enjoyed without high risk.
But now it is often said: the IT specialists will take care of it and should. However, it is not that simple. Of course, the board members cannot become IT security experts and they do not have to. A basic understanding of the importance of IT security and its basic functions is sufficient. However, this knowledge is indispensable so that the topic can step out of its niche and the budgets can be knitted accordingly. Therefore, managers should listen carefully to their IT employees and try to understand their concerns in order to recognize the risk their company is exposed to. In addition, it must not be forgotten that in the event of incidents, the responsibility ultimately falls to the Management Board. There are several examples that the chairman of the board or CEO had ruined his career – at least in the company – after serious data leaks. This can also happen at a lower level, as every board member and divisional manager can ultimately be held responsible for his department. However, if the management level is not involved, the employees will probably not care much about safety either.