The recent Jaguar Land Rover cyber breach highlighted the scale of the threat posed by cyber criminals. Costing an estimated £1.9 billion, it is believed to be the most damaging cyber attack ever recorded in Britain. The Marks & Spencer cyber-breach, which had a direct impact in Ireland, pales into insignificance with a cost of around £136 million.
If organisations such as these, with deep pockets and dedicated cybersecurity teams, can fall victim to significant breaches, what hope have smaller organisations with limited resources got?
“For organisations operating with limited resources, there are still practical steps that can significantly improve their cybersecurity posture, even as cybercriminals grow more sophisticated,” says BDO risk and advisory services partner Eoghan Daly.
“It is important to focus on the basics – ensuring that all software is kept up to date, using strong passwords, and enabling multi-factor authentication wherever possible,” he continues. “These measures alone can block a significant portion of common attacks. Additionally, organisations should make regular data backups – preferably with at least one copy kept offline – to guard against ransomware and other destructive threats.”
RM Block
There are also excellent open-source and low-cost security tools available, and managed-security-service providers can offer access to advanced technologies, such as AI-driven threat detection, at a fraction of the cost of building in-house solutions, Daly points out.
“Finally, collaborating with industry peers through information-sharing groups helps organisations stay aware of the latest threats without incurring large expenses,” he advises. “Cyber Ireland is a good resource too.”
KPMG’s EMEA cyber leader Dani Michaux focuses on the human aspect. “True cyber resilience is not just about technology but also about the culture, governance and preparedness, all of which are people-driven,” she says. “Humans will remain an important part of resilience strategies in combating cyber- crime. It’s our collective awareness and strategic decision making, vigilance and adaptability that create the strongest line of defence. In the end, cyber response is a collective effort and team sport – everyone has a role to play.”
Board members have particular responsibilities in this regard, according to Institute of Directors Ireland (IoD) chief executive Caroline Spillane. “It is critical that directors and boards keep pace with the changing nature of cyber security risk,” she says. “A cyber breach does not just impact business operations but also has a negative impact on an organisation’s brand and reputation, as well as its future success.
“Establishing a robust incident response plan is no longer simply a matter of regulatory compliance – it is a fundamental component of resilient and future-ready business operations. With the adoption of NIS2 [Network and Information Systems Directive 2] just around the corner, which places explicit responsibility for cybersecurity at board level, directors need to be aware of the extra responsibilities and be prepared for its implementation.
“The IoD remains committed to supporting its members on this key area, through our dedicated training opportunities on cyber security governance, as well as our programme of events and thought leadership content.”
Cyber attacks have taken on added potency of late due to the increased use of AI, but that can work two ways, says Michaux: “Leaders should focus on building strong AI-driven security strategies and use the technology to reinforce their existing cyber defences.
“The goal isn’t to replace people, but to have AI working hand-in-hand with your team. We recommend organisations develop a comprehensive AI security mechanism that includes mapping AI use across the enterprise, assessing AI-specific risks, embedding governance, compliance and monitoring mechanisms, and aligning AI security with business values and regulatory expectations.”
Daly also points to ways in which organisations can harness AI to strengthen their defences. “AI-driven tools are now capable of monitoring network traffic in real time, spotting unusual patterns that might indicate a breach, and even automating responses to certain threats,” he notes.
“These systems can learn to identify new attack methods as they emerge, providing a level of protection that would be impossible to achieve manually. Importantly, many of these AI-powered solutions are now accessible to smaller organisations through managed services, making sophisticated defences more widely available. Organisations should ask their cybersecurity advisers about managed detection and response (MDR) services.”
At a more basic level, staff training and awareness are absolutely critical to any cybersecurity strategy, he adds. “Many cyber incidents can be traced back to human error, so ensuring that employees are well informed about risks – such as phishing emails or unsafe password practices – makes a substantial difference.
“Regular training sessions and simulated attacks help staff remain vigilant, while fostering a culture where cybersecurity is seen as everyone’s responsibility. Not only does this reduce the likelihood of costly breaches, but it also ensures compliance with regulatory requirements and ultimately saves resources in the long run. There are excellent online training courses that are inexpensive.”
Good cyber defence comes back to the human element, according to Michaux. “Part of the solution will include deploying AI to bolster cyber defences, but the human element of the equation remains critically important,” she says. “Humans are the best line of defence. Ultimately, the key to reducing risk is to bring human critical thinking and scepticism to bear.”
Daly suggests taking that scepticism to its logical conclusion. “To keep pace with the rapidly evolving threat landscape, organisations should consider adopting a zero-trust approach, where access to sensitive data and systems is tightly controlled and continuously verified,” he advises.
“Investing in automation can help streamline security operations and ensure that threats are responded to quickly and effectively. It’s also important to stay engaged with the broader cybersecurity community to keep up with new developments and best practices.
“Finally, organisations should regularly review and test their incident response and business continuity plans, so they’re prepared to act swiftly if an attack does occur. By combining these approaches, even resource-constrained organisations can remain resilient in the face of modern cyber threats.”
