Zero trust approach to cybersecurity assurance

Zero trust approach to cybersecurity assurance

World-class security experts from Australia and Vietnam discussed some key fundamental security approaches to combat the complex landscape of the ever-changing cybersecurity threats at a recent webinar hosted by RMIT Vietnam.

RMIT Deputy Dean of School of Business & Management Professor Robert McClelland said that the challenge of cybersecurity assurance requires more than technical measures to overcome.

“Technical measures have been effective and robust in preventing cyber risks from information security breaches”, Professor McClelland said.

“However, research also shows that a majority of organisational security incidents are directly and indirectly caused by employees who violate or neglect the information policies of their organisation, thus, employee compliance choices are critical to organisational security.

“Even though the ‘human factor’ has been recognised as the weakest link in creating safe and secure digital environments, human intuition may also be the solution to thwart and prevent many cyber threats.”

Participants had an opportunity to listen to valuable sharing from an experienced, proven cyber security and academic leader Professor Matthew Warren, Director of RMIT Centre for ​Cyber Security Research and Innovation (CCSRI).​

During his keynote speech, Professor Warren presented the link between human resources and the complexity of maintaining security​.

Professor Warren said that over the financial year of 2020-21, the Australian Cybersecurity Centre identified 67,500 cybercrime reports and the self-reported losses from cybercrime during this time worth more than AU$33 billion [VND 540,773 billion] in total.

“Common human based cyber-attacks are scams, hoax software [tricked into installing malware], phishing, spear phishing, whaling, ransomware​ which all aim at collecting users’ details and passwords or delivering malware/ransomware.​”

Professor Warren introduced a new concept where human resources plays a key role in protecting organisations against cyber security threats.​

“There has been a traditional focus on the role of technology to protect organisations against cyber security threats,” he said.

“Human Security Firewall concept, however, is the collective organisational human knowledge, capabilities and skills, training, and resilience to deal with those threats.​

“This Human Security Firewall has to be trained, updated and renewed to ensure the best protection for organisations.​”

Professor Warren emphasised on the human resources role within organisations in successfully implementing the human firewall, including dealing with different staff types, dealing with cyber security related disciplinary matters, revoking passwords and access as part of the Staff Departure Protocols, keeping the human assets within the organisation, and recruiting new cyber security staff.​

news-1-zero-trust-approach-to-cybersecurity-assurance Panel discussion facilitated by Vietnam Hub Lead of RMIT Centre for Cyber Security Research and Innovation Dr Pham Cong Hiep introduced the different perspectives on the zero-trust security approach to participants.

Facilitated by Vietnam Hub Lead of RMIT CCSRI Dr Pham Cong Hiep, audiences were exposed to different perspectives on the zero-trust security approach including the implications of zero-trust security approach to users and IT professionals, a question of whether Vietnam should invest in becoming a world competitive provider of information security services, key challenges to increase national information security capability (human awareness, policy and management, and technical skill), the effect of information security competency levels on a country’s digital economy, and available resources to assist general population in becoming more aware of their personal cyber safety.

Panellists include Vice President of Vietnam Information Security Association VNISA and President of Vietnam Information Security Institute Mr Ngo Tuan Anh, Vice President of VNISA Mr Khong Huy Hung, Cybersecurity Specialist Mr Hieu PC, and Professor Matthew Warren.

news-2-zero-trust-approach-to-cybersecurity-assurance MOU signing ceremony between RMIT Vietnam and the Institute of Information Security - Vietnam Information Security Association.

As part of the event, RMIT Vietnam and the Institute of Information Security - Vietnam Information Security Association also signed a MOU which aims at developing strong collaboration and commitment between RMIT and Vietnam information security agencies to promote and build better security awareness, policies, and technologies for both private and public institutions.

Story: Ha Hoang

  • Industry
  • Digital

Related news