Cybersecurity: Not just an IT problem

As the UK Ambassador for Cyber Security with the IoD and a Global Ambassador for the Global Council for Responsible AI, Rob May knows a thing or two about cybersecurity. 

Do you?

Many business leaders still believe that their IT teams are solely responsible for cybersecurity within the organisation. “In fact”, says Rob, “it’s a team sport. Everybody in the organisation has to be part of the game.”

You may think that you’re safe from a major attack, but the truth is that cybercrime is on the rise – and it isn’t just major organisations that are affected. 

We spoke to Rob ahead of his Vistage webinar on July 30th to understand why it is so crucial that vigilance begins in the boardroom. 

“It won’t happen to me”

Many SME leaders convince themselves that they won’t be affected by cybercrime. After all, why would criminals target a comparatively small business when they have larger companies with higher revenues to go after?

Quite often, though, the attack is not personal. 

Cybercriminals are often opportunistic. “It starts off with them using automated tools, just looking to see who has metaphorically left a window open”, explains Rob. “If they can get in, they will get in, and they’ll see what happens.”

To put the impact on a business into perspective, Rob asks business leaders one question: Would it matter to you if somebody emptied your personal bank account? “Of course, the answer is always yes”, he says. “And it’s not a case of if it will happen, but when.”

In Q1 2025, Rob’s business – ramsac – stopped more cybersecurity attacks than they dealt with in the whole of 2024 combined. 

“When the Ukraine war started there was actually a drop in cybercrime”, he says, when asked why figures are rising so much. “Cybercriminals who would normally target businesses formed an international cyber army to target Russia. That’s now gone off the boil, and they’re back to focusing on attacks that make them money.”

Last year, Rob saw a 20% increase in ransomware attacks, with tactics continuing to evolve. “Like it or not, these cyber criminals are very clever people”, he says. “It keeps this field super interesting, as you’re constantly learning.”

“You’re not safe, because you employ people”

Your IT team, of course, is instrumental in helping avoid some of the more sophisticated cybersecurity threats. Rob speaks with some business leaders who see cybersecurity as a box-ticking exercise, believing that if they’ve put the right technology and procedures in place, they’ll be safe. 

Cybercrime, however, isn’t always sophisticated: “you’re not safe, because you employ people”, Rob stresses. “If somebody walks up to your front door and presses the buzzer and someone invites them in, all of those defences you’ve put up are redundant.”

Hybrid working has also brought its cybersecurity challenges. “If you’re working from home on a company-issued device, the company can manage and protect that device for you”, says Rob. “However, the company won’t have access to everything else on your home network.”

You may be using an Alexa device at home – and spot some cheap Alexa-compatible plugs for sale on Amazon. “They might seem like a bargain”, says Rob, “but they’re not actually from Amazon – they’re from China. “You’ve now added unknown Chinese devices to your network, which could impact your company device.”

Vigilance for businesses – and individuals

While Rob’s webinar is aimed at business leaders, attendees will also take away guidance on how to spot and avoid falling foul of scams in their personal lives. 

“Those who attend will leave with an understanding of current scams”, says Rob. “They’ll understand the importance of training and some of the pitfalls they’ll face if they do this wrong.”

Book your place to gain knowledge about the difference between cyber security and cyber resilience, and how to create the perfect response plan. 

“Ultimately, cyber security is a journey, not a destination”, says Rob. “You’ll want to check regularly where you are on that journey as technology is always evolving – there’s always something new to be aware of.”
If you’re ready to undertake a new cybersecurity journey that will help you in both your professional and personal life, sign up for Rob’s webinar here.

0 views