Q: Should information security form an integral part of a business strategy?
Definitely, given that businesses today rely on emails and the internet, and people can be the ‘weakest link’ – there will always be people who do not follow policies or may have forgotten about it.
Q: What is intelligence sharing and how important is it?
A lot of cyber incidents happen under the radar because, in many places, there is no requirement for mandatory notification. But if companies know about an attack or its modus operandi, they may be able to prevent it from happening. Hence, it is important that if intelligence about cyber attacks and risks could be shared, then it would be easier for companies and businesses to stay on top of such attacks by taking preventive or remedial measures.
Q: Is there an international policy, or technology underway to protect business from cyber threats?
I am not aware of any international policy or technology. Some software companies have advocated that there should be some international arrangement or treaties like the United Nations. This would help nations and businesses counter these threats, given that some countries might not have the resources or technological capabilities to fend off cyber attacks. Currently, the main protections are a nation and local legal based.