Skip to main content Skip to footer
#1 Cybersecurity Service Provider by HFS Research

Accenture recognized in global cybersecurity.

READ MORE

What is cybersecurity?

Cybersecurity is a part of information security that relates to the protection of computers, networks, programs and data against unauthorized access. As cybersecurity includes the protection of both company and personal data, the fields of cybersecurity and data protection overlap. The security objectives of confidentiality, integrity and availability are of paramount importance to both elements of information security.

Security is a business imperative—a growth accelerator

How important is innovation in cybersecurity?

Watch to find out why continuous innovation is at the core of cyber resilience

View Transcript

Explore our latest insights

Cloud Security

How security guides your path in the cloud

Challenges and common routes taken on the cloud journey and how security can manage risks and enable business outcomes.
READ MORE
Security

Ransomware reoriented

Businesses can recover from attacks faster if they understand and prepare for ransomware’s implications across the whole organization.
READ MORE
Security

The state of cybersecurity resilience 2021

New report reveals a group of Cyber Champions—organizations that excel at cyber resilience to achieve better business outcomes.
READ MORE
Energy Retail

Cybersecurity for connected energy ecosystems

Why it is critically important to secure the connected energy ecosystem as utilities becomes increasingly digitized.
READ MORE
Automotive

Automotive cybersecurity shifting into overdrive

Discover why a select few automotive companies are becoming more cyber resilient without spending more.
READ MORE
Banking

Financial services cyber resilience: Room to grow

Explore how leading firms are building better cyber resilience in financial services.
READ MORE

Importance of cybersecurity

An essential component of every business ecosystem

As the boundaries of business continue to expand beyond the organization—with the help of accelerated digitization, increased connectivity and migration to cloud—it’s critical that security is embedded throughout your business environment. Being holistic in your approach to security gives your company the ability and confidence to scale and more agility when it comes to adapting to any future impacts. In the face of potential cyber risk, resilience is key. Companies that build security into their business ecosystems by design, rather than by adding it as an afterthought, are giving themselves the greatest opportunities to operate confidently in today’s evolving threat landscape. The security of supply chains is becoming an increasingly urgent issue for businesses. We know that as many as four in ten cyber attacks are now thought to originate in the extended supply chain, not the enterprise itself. When it comes to cloud, being secure by design is crucial. Not only does this accelerate a company’s resilience, cloud security is also important for business because it enables better outcomes. As artificial intelligence (AI) becomes a new driver of growth for organizations, attacks on AI are continuing to emerge. Frequently, cyber risks are found to be in the areas of data protection and integrity, and manipulation of algorithms. End-to-end cybersecurity, tailored to your specific business, will allow you to scale to nearly any situation and adapt to future impacts.

Types of cybersecurity

  1. Critical infrastructure security

    Concerns the protection of systems, networks and assets whose continuous operation is deemed necessary to ensure the security of a given nation, its economy, and the public’s health and/or safety. Examples include hospitals, electricity grids and traffic lights.
  2. Application security

    A set of best practices, functions and/or features added to an organization’s software to help prevent and remediate threats from cyberattacks, data breaches and other sources. Examples include antivirus programs, firewalls and encryption programs that prevent unauthorized access.
  3. Network security

    Works to act against unauthorized intrusion of internal networks. It protects the internal infrastructure by inhibiting access to it. Examples include extra logins, new passwords and monitored internet access.
  4. Cloud security

    Protects cloud platforms, services and data against unauthorized access and disruption through access management, network security and secure cloud configurations. Examples of security in cloud include encryption and disaster recovery.
  5. Internet of Things security

    Internet of Things (IoT)—networks of connected devices, appliances and machines embedded with software and sensors that can send and receive data through the internet—offers new opportunities and impressive growth potential, but it also creates new vulnerabilities. IoT security requires innovative ways of thinking to defend the enterprise and its customers against attackers and data abuses.

Cybersecurity threats

With rapidly accelerated digital transformations, opportunistic phishing campaigns, discontinuity of information security operations and financial constraints posing unprecedented challenges for businesses everywhere, security strategies and practices are being tested like never before. Cyber threat intelligence is playing a crucial role in determining the measures that organizations can put in place to outmaneuver uncertainty, emerge stronger from crises and gain greater resilience against cybersecurity threats.

Malware describes a range of malicious software that includes backdoors and remote access trojans (RAT), information stealers such as banking trojans, spyware, ransomware, downloaders, viruses and worms. Cyber criminals use multiple infection vectors to activate malware and other risky software such as breaching networks, buying account access on the dark web and enticing users to click a dangerous link or attachment in a socially engineering phishing email. Once it gets inside, malware can:

  • Install additional harmful software or tools.
  • Covertly obtain information by transmitting data from hard drives. and apps (spyware, banking trojans, backdoors, RATs).
  • Move laterally through the network to spread itself or other malware.
  • Block access to key components of the network.
  • Disrupt certain components, damaging files and sometimes. rendering the system inoperable (ransomware).

Ransomware gains privileged access to computers through initial infection vectors or other malware and stops services and processes to carry out encryption activities. With files “locked” with an encryption key that only the attacker possesses, the impacted user is asked to pay money—often in the digital currency bitcoin—to reinstate access to the encrypted files. Ransomware in itself is not the real risk. The risk lies in the impact to the business through sudden disruption or removal of a service or process or through a loss of reputation. Ransomware-as-a-service (RaaS) is now enabling less-skilled malicious actors to employ this threat tactic, with high reward for little effort or technical knowledge.

Spyware and banking trojans are information stealing malicious software designed to enter a target computer, gather data and forward it to a third-party without consent. While banking trojans often collect financial account information through web injects, spyware can also refer to legitimate software that monitors data for commercial purposes. However, malicious spyware is used to profit from stolen data. Spyware will take the following actions on a computer or mobile device:

  1. Infiltrate—via an app install package, malicious website, or file attachment.
  2. Monitor and capture data—via keystrokes, screen captures, and other tracking codes.
  3. Almost all information stealers will send stolen data through a command and control server to the cybercriminal behind the attack, who uses it directly or sells it to other parties.

Mastering cybersecurity execution – lessons from Cyber Champions

Cyber resilience is the ability to defend against attacks while continuing to do "business as usual" successfully. Our latest research revealed a group of Cyber Champions who excel at cyber resilience and also align with the business strategy to achieve better business outcomes.

Learn from the Cyber Champions

Join the team

At Accenture Security, you’ll collaborate with the brightest minds in cybersecurity. Together we’ll build cyber resilience for the world’s leading organizations.

Join us

FAQs

Got a question? You’re in the right place. Find answers to frequently asked questions about cybersecurity.

Digital identity protects and controls access to data, systems, services, buildings and computers. Strong digital identity practices help reduce onboarding costs and the cost of breaches.

Context-rich information organizations can use to enhance their ability to detect and prevent threats before they escalate.

The practice of outsourcing the responsibility for maintaining and anticipating need for a range of security processes and functions in order to improve operations and reduce costs.

Hardware and software used to monitor, detect and control changes to devices, processes and events. Commonly used to protect industrial systems and networks from attacks.

Visit our Subscription and Preference Center
Subscribe