In the digital world in which we live, and that every day becomes even more digital, the risks associated with cybersecurity have decisive impacts on the future (or closure) of many organizations, whether public or private.

Several recent cyberattacks on hospitals, communications or media companies prove that no organization is free or “safe" from these risks. Closed services, outlocked organisations and sensitive personal data improperly obtained

The central framework of competences for professionals in this specialization should be aligned with the international references NICE (Knowledge, Skills & Attitudes) and NIST (according to the normative ISO27001), among others.

Platform security has never been more relevant than it is today.  Studies show that more than 80% of applications have at least one security flaw. 20% has at least one serious failure. This volume of failures poses a significant security risk. So the sooner you find and solve security issues in the software development process, the more protected your company's systems will be.

With the increase of the security perimeter and the increase in threats, leaders inthe areas of security and risk management need to adopt a system of visibility of the security of the platforms.  Those responsible should focus on orchestrating multiple innovations in application security to achieve a coherent defense (Gartner).)

Investing in security by default and by design, for example, on low-code platforms, is crucial.

Cybercriminals are aware of vulnerabilities and have found ways to hack critical service systems, such  as the cyberattack on Vodafone Portugal in early  February, which affected four million customers, but also banks, food distribution chains, the media and even the Assembly of the Republic, among other incidents were  made public already this year. No organization is safe.

A large percentage of companies do not adequately control access to enterprise applications. At issue is the weakest link in the information systems: the users themselves.  Volunteeror unintentionally, they are often responsible for cyberattacks that affect organizations.  Andoverall, this is because of the lack  of care and knowledge and not with malicious intentions, but also because companies have neglected investment  in cybersecurity training.

It is important that companies have automated ways of detecting risky behavior scares by users.

Users click links to malicious software, share sensitive  information on unsafe websites, lose unblocked devices, use compromised pens, access public Wi-Fi networks, or do not change home network access credentials.

Visibility and control solutions help your business keep sensitive, high-value data safe.  Tools that containsensitive data (financial records, customer information, intellectual property) such as financial, hygiene and health at work, marketing, development applications are safe from threats and cyberattacks.

This type of solutions makes it possible to act preventively , but also to identify more quickly the source of some security incident.

Organizations should also look at their safety culture. Platform users may not be developers or security professionals, but should understand the security implications of their behavior.

Advantages of platform security over e-mail

By sending documents or sharing personal data, users put themselves at risk and may be subject to acts of social engineering (phishing, smishing, vishing, deep fake) to inadvertently provide access  credentials or transmit sensitive information, explains the National Cybersecurity Center.

Digital platforms are, by default, more secure  in relationto the use of e-mail, social networks or other forms of information sharing of the organization.

Jorge Pereira @ Joyn Group