This article is interesting, particularly the section “How Not to Hire a North Korean Hacker”, which highlights that cybersecurity is a multifaceted discipline. Whilst their Security Operations Centre detected and shut down suspicious activity before it caused harm, the company acknowledged failings in their hiring and onboarding processes. I.e. the hacker should never have been able to get as far as they did. To their credit, the company has been open and transparent, and has publicly shared their learnings from this experience, and recommendations to other companies and organisations.

https://www.darkreading.com/vulnerabilities-threats/security-firm-hires-north-korean-hacker-knowbe4

#cybersecurity #security #smallbusiness #smallbusinesssucess