Cyber Loop - A Model for Sustained Cyber Resilience
Written by: Teresa Settas Save to Instapaper
There is nothing linear about cyber security. This is the guiding principle of The Cyber Loop, a cyber risk management model for sustained cyber resilience that unites stakeholders irrespective of role to make better decisions on cyber risk.
According to Aon’s 2021 Cyber Risk Report, business and information technology (IT) leaders are under increasing pressure to maximise return on security investment (ROSI) in an increasingly complex business and risk environment. Insurance providers also feel the pressure. As loss frequency and severity outpace cyber rate increase,[1]and many have halved the amount of cyber coverage they provide to customers after a surge in ransomware attacks left them hurting from considerable payouts.[2]There is no doubt that cyber risk runs deep and wide.
Businesses find themselves ill-prepared to manage this risk. Only two in five organisations are ready to navigate new exposures arising from rapid digital evolution, and more alarming, a mere 17 percent have adequate application security measures in place.[3]
The market continues to overflow with technologies designed to secure organisations and operational checklists to guide compliance and build resilience. Yet even with all these resources, many likely feel unsure of the best next decision. A strategic approach to cyber security is circular and iterative, and importantly — informed by data.
Realising Sustained Cyber Resilience
The Cyber Loop model acknowledges that each organisation will start its journey from a different place: assess, mitigate, transfer, or recover.
This journey through assess, mitigate, transfer, and recover demonstrates that a strategic approach to cyber resilience is circular and iterative, and importantly — informed by data.
When operating within the Cyber Loop, an organisation becomes an informed participant in managing risk. To realise the promise of sustained cyber resilience, it is critical that stakeholders — across the business — come together to assess where they sit in the circular journey. With data, better decisions can be made and return on security investment can be measured.
At the conclusion of each section, key questions are presented to help guide understanding of the value unlocked within each Cyber Loop entry point. Additionally, we provide eight key actions an organisation can take today, to reinforce its cyber security strategy.
Eight actions your organisation can take to today to reinforce its cyber security strategy:
- Review business continuity and disaster recovery plans to ensure they take account of, and regularly test for, cyber threats.
- Assess vulnerabilities. This allows the organisation to strategically budget for and address critical areas.
- Review governance, controls, roles and responsibilities and develop protective safeguards to prevent ransomware attacks.
- Quantify the financial loss associated with an incident, breach or disruption.
- Engage in breach simulations and tabletop exercises to test incident preparedness.
- Check contractual protections and have all insurance policies reviewed to ensure the organisation is covered for financial loss from a breach.
- Proactively utilise threat intelligence to monitor for the tactics, techniques and procedures of cyber attackers.
- Never stop cycling through the cyber loop.
Learn More
An organisation cannot mitigate risks it doesn’t know or transfer a risk it doesn’t understand. Aon’s approach to assessment informs future decisions on the best strategies to manage cyber risk.
Explore Aon’s Cyber Loop whitepaperto learn more.
-- ENDS --
About AonAon plc (NYSE: AON) exists to shape decisions for the better— to protect and enrich the lives of people around the world. Our colleagues provide our clients in over 120 countries with advice and solutions that give them the clarity and confidence to make better decisions to protect and grow their business
Visit www.aon.co.zafor more information.
Follow Aon South Africa on Twitter, Facebookand LinkedIn.
Find our latest Insightsfrom a local point of view.
Hear from Aon’s expert advisors in The One Brief.
Aon South Africa’s Impact Report.
Latest from
- Property and Cyber Risks for SMEs
- Privacy check-in – POPIA pitfalls in the hospitality industry
- The digitisation of payments in South African agribusiness
- AI vs Humans - Aon South Africa
- Changes on the Horizon for ESG Disclosures in South Africa
- Dewald Erasmus has been appointed as Head of Finance of MetroFibre
- Cyber security is an organisational responsibility given the threats posed by AI
- Customer Loyalty - From mass media to minutiae, from reach to reaching out
- Webber Wentzel launches a dedicated mentorship programme for its Candidate Attorneys
- New Competition Laws will impact businesses
- Priyesh Daya appointed as a member of the prestigious ICC International Court of Arbitration
- Webber Wentzel's rising stars recognised
- Unpacking the B-BBEE Scorecard - Preferential Procurement
- The Rise of Alternative Risk Financing Solutions
- EQ - The Most Powerful Skill for Customer Service
The Pulse Latest Articles
- Liezel Van Der Westhuizen On Why Winter Workouts Feel Harder And How To Stay Consistent (July 28, 2025)
- From Eastern Cape To England: Zintle Mpupha’s Road To The Rugby World Cup (July 27, 2025)
- Athini Magodla Reveals Why Modern Refreshment Fuels Performance Over Perfection In Today’s Wellness Culture. (July 27, 2025)
- Why More Mums Are Choosing Less Sugar - Not No Sugar (July 27, 2025)
- Scaling Hospitality: How Jimmy Eracleous Runs Two Of Moo Moo’s Top-performing Franchise Restaurants (July 27, 2025)