General 3min de Leitura - 26 de August de 2020

Data loss and impacts on the technology team

Time de TI reunido ao redor de uma mesa analisando a perda de dados.

This post is also available in: Português English Español

Incidents of cyber-security have become more evident in recent years. In 2015, the damage related to data hijacking was US$ 325 million – and continued to grow. According to a report released by the Online Trust Alliance (OTA), numbers of ransomware attacks had doubled in 2017.

This growth poses a great threat to companies of all sizes and performances. They intensify, however, in organizations that do not have backup structures. This makes them lose, in cases of attacks, large amounts of corporate data and leave them unable to continue business. The consequences, then, fall on the IT team: responsible for actions aimed at preventing and detecting attacks, structure backups, and other resources to ensure that the company’s data is secure.

We have enlisted some of the key impacts that can affect the technology team if there is a loss of corporate data. We also seek to exemplify the consequences of this for the company and how it affects, directly or indirectly, IT analysts. Just keep reading!

Loss of credibility with company managers

Even though it is practically impossible to form a 100% shielded structure against virtual attacks, it is inevitable that the fault, through occurrences of data loss, falls on the members of the technology team. Managers will certainly object the competence of employees and investments made in the security segment to avoid this kind of accident when impacted by this type of occurrence.

At this point, it is up to the technology team to mitigate the occurrence and try to identify which vulnerability has been exploited, to compose a plausible justification about the fact. Due to the occurrence, it is very important that members of the technology team record all the initiatives and projects that were submitted for the evaluation of the managers of the company, in order to minimize the chances, or the impacts, generated by the loss of corporate data.

If the technology team has made efforts in this direction, it will be much easier to prove that the occurrence was not motivated by a failure of analysis, or attribution of low priority to avoid this type of accident. It is the attribution of the technology team, regardless of the size of the company segment, to alert managers/owners of the company about the impacts generated by the loss of corporate data, as well as suggest means to prevent these occurrences.

Following these guidelines, the chances of loss of credibility in the technology team will be reduced through occurrences that generate loss of corporate data.

Reduced investments in the technology sector

Data loss can generate significant financial consequences for companies, impacting the investments planned for the technology sector and other sectors of the company.

Soon after the incident, it is consistent that the company looks for solutions to avoid this type of occurrence again (in most cases). These investments, which were not foreseen, end up impacting the budget allocated to the technology sector, causing delays in projects and jeopardizing other deliveries associated with the technology sector.

Another possibility, despite being inconsistent, is the cutback in investments in the technology sector after such occurrences. This attitude is motivated by the lack of confidence or credibility of the professionals. The situation can also generate moves towards outsourcing of functions in the technology sector, trying to supply the need for security in the organization.

Impact on technology team productivity

It is clear that by suffering a loss, technology teams will begin to direct their efforts towards restoring the structure and continuity of the business. It is a natural and instinctive process. It is worth mentioning, however, that this procedure can be long, exhaustive and directly impact the productivity and deliveries of the technology team, with reflexes in all sectors of the organization.

For some time, technology analysts – in addition to performing their primary functions – will need to allocate time to the demands associated with the recovery of the incident. This includes researching and investing in new security features, certification of the implemented structure, and attempted recovery of data lost. All this effort tends to interfere with the delivery and priorities of technology analysts.

Layoffs from tech team members

Although it is one of the most drastic situations, it is not impossible. If the corporation receives major impacts, such as those already mentioned, a lack of confidence about the team’s ability to design structures for corporate network protection against data loss will be put in check. Layoffs can be one of the results and could end up reflecting on the most diverse sectors, putting at risk the position of professionals, including other sectors of the organization.

Thus, analysts need to recognize the importance of designing structures to minimize the likelihood of occurrences of this type of incident (UTM FirewallDLP, among others) and also for fast re-establishment of the structure, without major losses to the operation. (Data backup, plans for disaster recovery).

Continue improving your knowledge by reading the blog post “Why Companies Should Invest in Backup Structures”. Good reading!

This post is also available in: Português English Español