Deloitte launches Australian Cyber Intelligence Centre to link global network and build business resilience
- Cyber threats will increase exponentially and be more sophisticated than new systems
- Risks are global and evolving faster than organisations can react
- Cyber threats are potentially the most destabilising phenomena in the world: Dr Luke van der Laan Director, Professional Studies, University of Southern Queensland
26 November 2015: Successful cyber-attacks are on the rise despite investment in security being at an all-time high. According to Gartner1 organisations in the Asia Pacific and Japan spent US$71 billion last year on IT security, likely to grow by almost 10% per year to reach US$170 billion globally by 2020.
As the threat and associated attacks grow in number and sophistication, businesses are struggling to keep up. The focus on protection and building ever higher ‘fire-walls’ just isn’t working said Deloitte Risk Advisory Managing Partner Harvey Christophers.
“Our global and local ambition at Deloitte is to share active real-time global threat intelligence to enable businesses to get ahead of serious cyber risks and focus on their core business,” Christophers said.
Christophers announced the launch of Deloitte’s 24/7 Australian Cyber Intelligence Centre which links into its regional and global network of cyber intelligence centres.
Asia Pacific Cyber Risk leader James Nunn-Price, who recently returned from launching the Deloitte facilities across Asia said: “Our Asia Pacific centres are now live and strategically located in Japan, Singapore, Malaysia, and India, linking to our new centre here in Australia – with Hong Kong/China due to come on line next year.
“Our regional centres also link into our global network of more than 20 centres in North and South America, Europe, the Middle East and Africa. Their aim is to help businesses become secure, vigilant and cyber resilient.
“These strategically placed centres enable a deep understanding of local markets, language, threats, regulatory security and privacy variations. They are also underpinned by deep technical cyber risk advisory services and link into the global markets in which both criminals and multi-national organisations operate.
“With more than 200 billion connected devices due to come online by 2020, the digital world is becoming increasingly complex and sophisticated. As are the associated cyber threats, which are growing in both severity and sophistication. It is becoming more and more difficult for businesses to keep up.
“By collectively operating a network of shared services of Cyber Intelligence Centres, Deloitte is able to combine global threat intelligence and local delivery at economies of scale with unique insights that individual businesses cannot readily achieve on their own2. Cyber risks cannot be completely eliminated, but they can be actively managed,” Nunn-Price said.
He said: “Any organisation trying to solve these risks just at an IT level will be ineffective. The solution has to be solved at the enterprise level, and business executives increasingly understand cyber risks in all the dimensions of business strategy and operations.”
Nunn-Price and Deloitte are actively involved in a coordinated Australian government approach to address cyber security threats that involves a strong partnership between the Government, businesses and the research community. Information on Australia’s Cyber Security Review and Strategy can be found at www.dpmc.gov.au.
In addition, Deloitte is actively working with universities and education providers around STEM subjects (science, technology, engineering and mathematics) which will help to equip Australian talent with the skills to combat cyber risks.
- The average cost of a data breach per Australian organisation is more than $2.5 million per year3 …and rising
- The average breach involved more than 20,000 records3 in Australia over the five years to 2014
- There was also a 25% increase in data loss between 2013 and 2014 globally
- Most organisations are focussed on prevention as opposed to detection
- Ninety two per cent of breaches are perpetrated by outsiders
- These known external perpetrators come from organised crime (55%), state affiliated hackers (21%), activists (2%) and former employees (1%)
- Only 14%4 of breaches are by insiders, but this is rising5
- More than three quarters of the breach incidents are caused by weak or stolen credentials
- With rogue hardware and malware also frequent causes of breach or service denial, it is important for all employees, contractors and suppliers to be aware of how criminals are targeting them with their well-planned attacks, often triggered by ‘apparent insiders’ who lie in wait within the organisation.
- Nunn-Price established the Cyber Intelligence Centre concept, overseeing its implementation in the UK in 2013 and its 24x7 services to clients.
- He was responsible for Deloitte’s overall information security, resilience and cyber advisory services to the UK Government where he assisted the London 2012 Olympic Games leadership team with cyber incident response, crisis management and forensics.
- In 2013, Deloitte also launched the Cyber Intelligence Centres across North America and Europe and the Middle East to provide clients with staff, technology, and processes to manage core operational security services and understand and drive appropriate responses within an organisation.
- Deloitte has a network of 3500 cyber specialists across 46 countries
1 One of the world's leading information technology research and advisory companies
2 Gartner, Forrester and Kennedy have named Deloitte a leader in Cybersecurity Consulting. Kennedy’s report entitled Cybersecurity Consulting 2015 notes: “The firm’s notable depth across the breadth of the cybersecurity consulting portfolio coupled with its ability to effectively communicate and work with the span of a client organization (boardroom down to IT operations) solidifies its position in the Vanguard.”
3 Ponemon Institute Releases 2014 Cost of Data Breach: Global Analysis
4 Numbers overlap because some insiders and outsiders are in collusion
5 2014 Verizon Data Breach Investigations Report with the U.S. Secret Service, FBI, Deloitte, DHS and others
Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee, and its network of member firms, each of which is a legally separate and independent entity. Please see www.deloitte.com/au/about for a detailed description of the legal structure of Deloitte Touche Tohmatsu Limited and its member firms.
Deloitte provides audit, tax, consulting, and financial advisory services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte has in the region of 200,000 professionals, all committed to becoming the standard of excellence.
About Deloitte Australia
In Australia, the member firm is the Australian partnership of Deloitte Touche Tohmatsu. As one of Australia’s leading professional services firms, and winner of both the Australian Financial Review/CFO Audit Firm of the Year and Accounting Firm of the Year awards 2013, Deloitte Touche Tohmatsu and its affiliates provide audit, tax, consulting, and financial advisory services through approximately 6,000 people across the country. Focused on the creation of value and growth, and known as an employer of choice for innovative human resources programs, we are dedicated to helping our clients and our people excel. Formore information, please visit Deloitte’s web site at www.deloitte.com.au.
Liability limited by a scheme approved under Professional Standards Legislation.
Member of Deloitte Touche Tohmatsu Limited
© 2015 Deloitte Touche Tohmatsu