When it comes to addressing the threat of cyber attack, companies are starting to borrow from the playbook of their would-be enemies by hacking their own systems before others get the chance.
The practice is called "ethical hacking" and it's an approach that recently gained worldwide attention when it was revealed that Edward Snowden, the American exile who is now hiding out in Russia after disclosing details about U.S. spy operations, received an official certification in ethical hacking while working as a contractor for the National Security Agency.
The reason for the interest in ethical hacking is clear: security concerns are on the rise — both in the public and private sector. To lessen the risk, companies are investing heavily in security services. A 2010 Gartner survey predicted that spending on worldwide security services would reach $49.1 billion by 2015, a 40 percent increase from 2011.
The Case for Self-Inflicting Wounds
While many companies wait until there is a security breach to fix the system, one way to proactively manage a cyber hack is to simply hack your own system before others do. Ethical hackers — the undercover cops of the IT world — are important investments for companies, especially government agencies, financial institutions or others that deal with highly sensitive information. Third-party companies employ these certified hackers to identify holes in a company's IT infrastructure.
Here is how Cornerstone uses ethical hackers to stay on top of digital security threats and assure our customers that our system is impenetrable.
- We pay third-party professional hacking services to hack our system continuously for two weeks. This is called a penetration test and implements a combination of manual and automatic maneuvers.
- We have conducted these tests four times a year — timed with new product releases — since 2010.
- We publish results upon client request. This how we can prove the security of our system.
- We make sure all red flags that are identified are addressed immediately.
As the spread of cloud-based and other technologies opens up more opportunities for cyber criminals to strike, it is crucial that IT departments be proactive about plugging any holes before they spring a leak.
Related Resources
Want to keep learning? Explore our products, customer stories, and the latest industry insights.
Datasheet
Introducing an exclusive partnership with WaitWhat's Masters of Scale for an entirely new learning experience
You asked for popular podcast modalities and we delivered through a partnership with WaitWhat’s Masters of Scale. Check out lessons about building teams, developing products and scaling companies from the world's top leaders, now available in multiple Cornerstone Content Anytime subscriptions.
Blog Post
HR, Meet IT — Your Analytics Partner in Crime
Today, it's hard to talk about HR without talking about analytics. From the first recruiting email to the exit interview, big data is changing the way we both approach and practice talent management. While the foundation for success in human resources — great people skills and strong intuition — is certainly still relevant, a modern career in HR increasingly requires a "moneyball" mindset.
Blog Post
Top 10 benefits of HR digital transformation in 2024
Fast and frequent changes in technology have forced almost every organisation to transform in some way, touching all parts of the business. For HR, this digital transformation is two-fold – transactional and transformational. Transactional includes processes like payroll, leave management, benefits management and time management, whereas transformational includes talent management (recruiting, learning, mobility, performance, business intelligence, workforce planning and the use of big data).