• Skip to main content
  • Skip to secondary menu
  • Skip to primary sidebar
  • Skip to footer

Nevada Business Magazine

The Decision Maker's Magazine

Subscribe Now!

  • Subscriptions
    • Print
    • Mobile App
    • Email
    • Nevada News & PR Wire
  • Features
    • New This Month
    • View Issues
    • Cover Stories
    • Feature Stories
    • Industry Focus
    • Building Nevada
    • Special Reports
    • Meet the Decision Maker
    • Press Release Wire
    • Nevada Industries
  • Departments
    • A Matter of Opinion
    • Around the State
    • Business Indicators
    • Commentary
    • Commercial RE Report
    • Crossfire
    • Expert Advice
    • Face to Face
    • Free Market Watch
    • Inside Politics
    • Power of Attorney
    • Profit & Loss
    • Speaking for Nevada
    • Tech.knowledge.me
    • The Last Word
    • Vital Signs
  • Planning Calendar
  • Advertising
    • Advertising Info
    • Advertising Staff
    • Submission Requirements
    • Online Advertising
  • Events
    • NBM Events
  • About
    • About the Magazine
    • Contact the Staff
  • Connect
    • Business Directory
    • Press Release Wire
    • Business Calendar
    • Submit Listing
    • Post Press Release
    • Add Your Event
    • Sign Up
    • Log In
You are here: Home / Features / Feature Story / Guarding Business: Cybersecurity in Nevada

Guarding Business: Cybersecurity in Nevada

September 1, 2018 By Doresa Banning Leave a Comment

Because data breaches often result from employees doing something they shouldn’t training them on cybersecurity is crucial.Earlier this year, the malware program VPNFilter infected hundreds of thousands of office and home routers and networked devices around the world. The cities of Atlanta and Baltimore experienced ransomware attacks, the latter causing the 911 dispatch system to be offline for 17 hours. Confidential data were breached at numerous companies—Adidas, Dignity Health, Honda, LabCorp, MyHeritage, and Ticketmaster, to name only a handful. Cyberattacks, with their potentially deleterious consequences, are a constant threat to all businesses.

“It’s not a matter of if it will happen; it’s a matter of when. Don’t wait for when,” said Nancy Thompson, a Reno-based cybersecurity and privacy consultant.

Consequently, companies must make cybersecurity, or information security, a priority, said Mike Yoder, co-founder and CEO of WinTech LLC, a Las Vegas company that provides virtual receptionist and visitor management solutions to businesses.

“Cybersecurity is the process of protecting information in the cyberworld,” Thompson said. “We are more and more reliant on computers and the data that’s on computers for everything. The more that we’re reliant on it, the more risk there is.”

Risk & Costs

Information security is so critical today because companies, and society in general, continue to depend more and more on the Internet, which has become an essential tool for doing business, said David Langford, vice president of technology, Smart City Networks, headquartered in Las Vegas. Smart City provides telecommunications services for convention centers across the U.S. and three National Football League stadiums.

Cyberattacks are a daily occurrence. Now, with the cloud and Internet of Things (IoT), the risk is elevated because the potential sphere in which attacks can occur is broader. Take, for instance, the example of the Las Vegas casino-hotel that got customer information stolen by hackers who accessed it via the “smart” fish tank’s thermostat.

“[Cybersecurity] is no longer about inconvenience but a financial war,” said Darren McBride, CEO, Highly Reliable Systems Inc. in Reno, which sells and supports networks and computers in Northern Nevada.

A cyberattack can damage the reputation of a company, get it sued, and cause business and revenue loss. Worst case, it can take down a business entirely.

In the U.S., a data breach costs an organization an average of $225 per compromised record, statistics from the Ponemon Institute and IBM Security’s “2017 Cost of Data Breach Study” showed. Costs are higher for highly regulated industries. In healthcare the cost is $380 per file and in financial services, $336. These figures include notifications, legal fees, hiring additional staff, providing identity monitoring services and loss of business.

Despite the potentially catastrophic effects of a cyberattack on a business, experts said in large part commercial organizations in Nevada fall into two camps: those that aren’t doing anything about cybersecurity because they haven’t yet been attacked and those that are making genuine efforts but aren’t doing enough to truly protect themselves and the data they hold.

“They do it with a lick and a promise,” Thompson said. “Until they’ve had a problem, an audit problem or an actual breach, quite often they don’t do it with enough care and rigor.”

Predominant Cyber Incidents

Today, cyberattacks are more sophisticated, but not always, and the perpetrators more experienced than they were, say, five years ago, said Jonathan Davies, founder and president, Southern Nevada Cybersecurity Alliance in Las Vegas. SNCA is a non-profit, no-membership organization that’s open to anybody and free to attend.

“[Cybersecurity] is an industry that has moved very quickly and continues to move very quickly,” Thompson said.

These types of attacks are the most common today:

Phishing/social engineering: These are often-occurring, low-tech incidents in which the perpetrator, via e-mail, elicits personal information or money from their target by posing as another person or entity.

Business e-mail compromise: These are a form of phishing in which a cybercriminal impersonates an executive, often the CEO, and attempts to get an employee, customer or vendor to transfer funds or sensitive information to the phisher.

Ransomware: These prevent access to a networked device until a sum of money is paid.

Cryptojacking: These secretly use one’s device to mine cryptocurrency.

Viruses/malware: These aim to damage or disable networked devices.

Attacks can be categorized as crime, espionage, warfare or hactivism (hacking whose purpose is to promote a social or political cause). The IBM/Ponemon survey showed that malicious or criminal attacks were the primary cause of data breaches in the U.S. in 2017, accounted for 52 percent of all incidents and were the most costly. Human error and system glitches each were responsible for 24 percent.

Internal Data Protections

Effective corporate cybersecurity includes three types of controls: administrative, technical and physical, Davies said.

“Today’s security arsenal employs a layered approach, utilizing a variety of different software- and hardware-based tools that analyze multiple sources in real time to detect and prevent sophisticated attacks,” he added. “There are affordable solutions for companies of all sizes.”

As far as administrative controls, every business should have security/privacy policy and procedures that are written down and in effect. They should include guidelines such as what the information technology infrastructure should be, how data is stored, how to mitigate against attacks, what the firewall rules area, how to detect attacks or intrusions and how to resolve problems when they arise, Yoder said. They should include which employees have access to what data, steps for removing access when a worker leaves the company, who controls what parts of the data and the like.

Also recommended is a financial policy that, for one, prohibits employees from sending money to anyone or anywhere without first conferring with the company’s CEO or chief financial officer via the phone, said McBride.

Because data breaches often result from employees doing something they shouldn’t or not doing something they should, training them on all things cybersecurity and on the company’s related policies/procedures, especially around phishing attacks, is crucial. Langford’s company, for example, has its employees trained in anti-phishing by KnowBe4 to prevent employees from getting lured unsuspectingly into a phishing scam.

Also essential is constantly updating systems, both software and hardware, and applying patches to applications, proprietary and not, as is possible and quickly.

Monitoring and testing of servers and network systems can be done regularly to ensure they haven’t been penetrated, Yoder said. Re-evaluation should be done routinely.

“Conduct a risk assessment and business impact analysis at least annually and prioritize your remediation plan according to criticality of assets,” Davies said.

Technical controls are tools and mechanisms to prevent attacks from even penetrating the network, reaching employees’ e-mails for instance. They include firewalls, encryption, multi-factor authentication, antivirus software, unified threat management routers and backup systems that can recover data from an infected computer within two to three hours, which is “business critical,” McBride said.

An array of such products is available. Some of the latest ones include Cisco Umbrella, a cloud security platform that provides the first line of defense against threats on the Internet. SonicWall routers feature unified threat management security. Mobile device management is software that secures and monitors employees’ cellphones. SolarWinds’ Orion platform allows users to view real-time statistics of their network directly from their Web browser.

Gaining popularity are automation and orchestration platforms that filter out false positive breaches and thereby, reduce a security team’s workload. Machine learning and artificial intelligence are being used to detect and halt suspicious network traffic, including new threats, ones that previously haven’t been seen.

Finally, physical controls are walls and fences, locked doors, security cameras, guards and the like. How much protection and what kind a company needs should be on par with its risk level, Davies said.

“An organization’s security posture should be of a sufficient level of maturity to protect that organization from the threats it faces, based on the likelihood of any identified threat being realized,” he added.

Assistance is Available

Companies may take cues from or adopt an existing set of cybersecurity measures, created by various organizations and perhaps even specific to their industry. For instance, the National Institute of Standards and Technology offers the “Guide to Protecting the Confidentiality of Personally Identifiable Information.” The International Organization for Standardization’s ISO/IEC 27000 standards help organizations manage the security of assets such as financial information, intellectual property, employee details and information entrusted to them. Another source is ISACA, previously known as the Information Systems Audit and Control Association, the organization now goes by its acronym to reflect a broader range of IT professionals. ISACA engages in the development, adoption and use of globally accepted knowledge and practices for information systems.

“These frameworks now are developed to such an extent that there’s no reason to develop your own,” Thompson said.

Businesses may either hire employees internally to manage their cybersecurity, outsource to one or more of the providers in the growing field or employ a combination of strategies. For instance, Smart City Networks has an in-house network operations center staffed with 17 people who are tasked with monitoring the company’s networks across the U.S. Each employee bears some cybersecurity responsibility. Three are dedicated to configuring and monitoring firewalls for maximum protection. Another three ensure Windows and antivirus programs get updated and the Linux systems and Windows servers get patched, as necessary.

“The outsourced cybersecurity marketplace is growing exponentially, as savvy chief information security officers choose to ‘buy it rather than build it,’” Davies said. “Common security functions such as security operations centers, vulnerability management, identity and access management are now available ‘as a service.’”

Evolving Regulatory Environment

A primary challenge for companies is staying current with and meeting the requirements of the data protection/privacy regulations effected by industry and government. The number of these laws is growing, and each has different mandates.

For instance, the European Union’s General Data Protection Regulation (GDPR), which went into effect in May, regulates how companies protect the data and privacy of EU-based people. Because the GDPR applies to organizations outside the EU that collect or process personal data of individuals in the EU, Nevada companies who, say, sell their products or services in the EU are subject to it.

The U.S. may follow the EU’s lead and enact similar legislation. Earlier this year, the Canadian government considered updating its own personal information and privacy laws to allow its citizens more regulatory tools to protect their personal information online. In June, California passed the Consumer Privacy Act of 2018, which goes into effect in 2020. In part, it affords consumers the rights to know specifics about the data a business has on them and to have a business delete their personal information, with some exceptions.

Regardless of the difficulties involved in implementing, managing and updating various protections, cybersecurity is a must for Nevada businesses.

“Don’t ignore it,” Langford said. “Don’t stick your head in the stand and say, ‘It hasn’t happened to us…yet.’ Make sure that you have some awareness about cybersecurity and the types of systems that can detect, prevent and correct cyberattacks. And make the commitment to spend some resources in making sure that all of that is up to date and kept up with because it’s constantly changing.”

Filed Under: Feature Story Tagged With: Darren McBride, David Langford, Highly Reliable Systems Inc., Las Vegas business, Las Vegas technology, Mike Yoder, Nancy Thompson, Nevada business, Nevada technology, Reno business, Reno technology, Smart City Networks, WinTech LLC

Paul Krakovitz: Intermountain Healthcare

Edward Vance: EV&A Architects

Scott Arkills: Silver State Schools Credit Union

Tonya Ruby: Cox Media Las Vegas

Online Advertorials

Online Advertorials

Roseman’s College of MedicineAddressing the Physician Workforce Shortage while Being a Positive Economic Driver

Groundbreaking LawRequires Businesses Replace Decorative Grass

The Southern NevadaEvaporative Cooling Issue

New Law Targets Turf in Southern NevadaWill Save 10 Percent of Water Supply

Advertise With Us

Advertise With Us. more details ►

Primary Sidebar

Get important updates from Nevada Business Magazine, directly to your inbox.
Subscribe

Keep WatchFinancing in Nevada

Industry FocusProperty Management

Transportation in NevadaChallenges and Opportunities

Nevada Business Awards2022

Nevada News & PR Wire

  • Nevada Affordable Housing Assistance Corporation Announces Additional Available Funding for Homeowners in Need

  • Henderson Chamber of Commerce to Host Networking Breakfast Highlighting Equity &Amp; Inclusion in Business

  • Special Olympics Nevada Receives $5K Donation From Health and Wellness Solutions Company, GOLO

  • Three Southwest Medical Specialties Newly Recognized as Nevada’s Only Patient-Centered Specialty Practices by the National Committee for Quality Assurance

  • Clark County School District Expanding Career & Technical Education (CTE) Program With $100,000 From Google

  • Optum Care Anesthesia Adds a New Health Care Provider

  • Ninth Grader’s Dinosaur Design Chosen for New Move 4 Less Truck Wrap — Surprise Reveal Made at Student’s School, Prizes Awarded —

  • People Over Profit Foundation & Silver State Schools Credit Union Announces 2022 Scholarship Program Recipients

  • CSN Awards More Than 4,200 Degree at 50th Annual Commencement Ceremony

  • Bank of Nevada, First Independent Bank, Green Our Planet and Nevada Department of Education Make Financial Literacy Curriculum Available to Every Nevada Student

  • Fort 137 Designed by Daniel Joseph Chenin, Ltd. Recognized as Finalist in International 2022 A+Awards for Architecture and Interior Design

  • De Castroverde Law Group Expands Service With Henderson Location

  • CALV Attracts Record Interest in Spring Mixer

  • Owner of Emerald Island and Rainbow Club Casinos Receives Prestigious Accolade by The Silver State Awards

  • Charlie Palmer’s Pigs & Pinot Returns to the Grand Sierra Resort June 11

  • The Nevada Dairy Farmers Culinary Scholarship Deadline Extended

  • Trosper Public Relations in Nevada Promotes From Within

  • Nathan Adelson Hospice’s Annual “A Flair for Care” Fashion Show & Luncheon Raised More than $500,000 for the Hospice’s Uncompensated Care Program

  • Optum Care to Hold On-Site Hiring Event May 17

  • The Discovery Introduces New Exhibition: Energy/Energía

  • Grand Sierra Resort and Casino Makes Major Contribution to the Children’s Cabinet

  • What’s New for the 2022 Reno Rodeo

  • CALVPresident Angelina Scarcelli Honored by GlobeSt.com Women of Influence

  • Henderson Professional Fire Fighters, Henderson Hospital and City of Henderson Kick off “Safe Pools Rule!” Campaign

  • Applied Analysis Announces Management Promotions and Returning Team Member

  • May 26 NAIOP Southern Nevada Breakfast Presents “Nevada Elections and Politics: Midterm Update”

  • Henderson Chamber of Commerce Promotes Events Manager

  • Tee Off for a Great Cause at United Way of Southern Nevada’s 65TH Anniversary Golf United Tournament

  • Attorney General Ford Cautions Nevadans to Be on the Lookout for Credit Union, Bank Imposter Scams

  • Cox Donates Laptops to Intermountain Healthcare’s Medical Assistant Training Program

  • Nathan Adelson Hospice Announces Staff Promotions

  • Las Vegas-Based Social Issues Theatre Hosts Fundraiser to Support Mental Wellness and Community Unity

  • State Child and Family Services Issues Discount Cards in Honor of Foster Care Month

  • CSN Celebrates Its 50th Commencement Ceremony

  • More Prizes Added to Golden Ticket Raffle for Junior Achievement of Southern Nevada — Six Fabulous Packages, May 31 Drawing —

  • Local Businesses Partner with Project 150 to Launch After School Program, ‘A Fighting Chance,’ for Homeless, Displaced and Disadvantaged High School Students

  • Helix Electric of Nevada to Host Charity Spring Golf Tournament

  • Camp Rhino Trainers And Members To Transport Heavy Equipment Manually To New Location

  • LP Insurance Names Marsh HR Director

  • Crovetti Orthopaedics Welcomes Board Certified Jennifer D’Andrea, APRN to Medical Team

  • Nevada Donor Network &Latin Chamber of Commerce of Nevada Launch ‘Corazon de Esperanza’ Latino Donor Outreach Campaign

  • Local Diver to Appear on the Problem Solver Show to Discuss the Search for Human Remains in Lake Mead

  • Calv Presents June 2 Class on Land Sales

  • Ira Gostin to Lead Creative Innovation Workshop at PRSA Counselors Academy in Scottsdale, Ariz.

  • Touchstone Living Breaks Ground On Independence Offering Attainable Homes For First-Time Homebuyers

  • aha! On Course to Complete 1,500 Flights

  • FirstMed Health and Wellness Center Partners with Transit Centers to Combat Human Trafficking in Southern Nevada

  • Rudy Ruettiger to Speak at Northern Nevada Italian Association Annual Fundraising Dinner May 19

  • Southwest Medical Adds Two New Health Care Providers

  • Optum Care Cancer Care Adds a New Provider

  • Elko REALTOR® Greg Martin Appointed to Key 2023 Position With National Association Of REALTORS®

  • Local Dentists Provide Free Care to Uninsured Children at Give Kids a Smile Event

  • Laine Blackmon Joins Blackmon Home Loans and NV Capital Corporation as Loan Officer

  • Cross Creek, a 197-Home Community at the Historic Lompa Ranch, Opens in Carson City

  • Dr. Catherine Prato Introduces NuseMuse a New Web-Based Study Platform Is Built for Nursing Students by Nurses!

  • UNLV Engineering Students Showcased Inventions With Commercial Potential at Senior Design Competition on May 5

  • Tom Clark Solutions Chosen as Reno + Sparks Chamber of Commerce Lobbyist of Record

  • Southern Nevada Home Prices Keep Climbing While Sales Start to Slide

  • Lipson Neilson Partner Jessica A. Green Appointed Interim Hearing Master for the Las Vegas Municipal Court

  • The National Council of Juvenile and Family Court Judges To Hold 85th Annual Conference in Northern Nevada

  • United Way of Southern Nevada Welcomes New Director of Fund Development and Donor Relationships

  • Henderson Chamber of Commerce President and CEO Wins U.S. Small Business Administration Award Recognition

  • Taurean Consulting Group Promotes Brianda Barrett to Technical Recruiter

  • Sunset Montessori Community Announces 2022 Summer Camps

  • OurFamilyWizard Joins National Council of Juvenile and Family Court Judges With Corporate Sponsorship

  • Natalie Gulbis Golf Classic to Benefit Boys & Girls Clubs of Southern Nevada — Foursome and Sponsor Opportunities Still Available for May 16 Event —

  • Celebrate Mother’s Day at Emerald Island and Rainbow Club Casinos

  • aha! Announces New Non-stop Service Between Reno and Santa Rosa

  • Henderson Chamber of Commerce Announces Two-Year Rate Lock for Association Health Plans During 2022 Open Enrollment

  • Pro Football Hall of Fame & SilverSummit Healthplan Focus on Student Mental Health & Suicide Prevention at ‘Strong Youth Strong Communities’ Youth Summits

  • Siena Italian Now Taking Reservations For Mother’s Day Brunch and Dinner

  • Mariposa Cocina And Cocktails Launches Cinco De Mayo Celebration!

  • Is Your Business Prepared for Cyber Attacks? iTernal Networks’ Free Upcoming Webinar “Why Your Company Needs a Cyber Security Risk Assessment” – May 12th 1 pm PDT

  • Cox and Manheim Nevada Help Launch Cox “34 by 2034” Social Initiative

  • Southern Nevada Senior Law Program Spreads Awareness of Older Americans Month

  • Asset Tracking Maker, SeeID Wins $200,000 Investment From AngelNV

  • Broadbent & Associates, Inc. Awarded 2022 Nevada Wastewater Circuit Rider Contract

  • CAMCO Promotes Tabitha Gerken to Division Director of Its Southern Nevada Portfolio Division

  • LVGEA President & CEO Tina Quigley Joins the Workforce Connections Board

  • Six Nevada-Based Startups to Vie for $200,000 AngelNV Investment This Saturday Afternoon at Las Vegas City Hall

  • Coral Academy of Science Las Vegas’ Sandy Ridge Campus Ranked in the Top 5 of Best High Schools in Nevada by U.S. News & World Report

  • Nevada State Bank Branches Collecting Feminine Hygiene Products and Gently Used Purses for Local Nonprofit

  • Celebrate Older Americans Month ‘The Reno Way’ Throughout May

  • Pro Football Hall of Famers & SilverSummit Healthplan Visit Metro Police Officers

  • Nevada Donor Network and Clark County Commission: Welcome to Las Vegas Sign Turns Blue and Green to Celebrate National Donate Life Month ‘Blue and Green Day’

  • Tonopah High School Students in J4NG Discover Career Paths at Kinross Nevada

  • Chicanos Por La Causa Celebrates Grand Opening of New Las Vegas Office and Minority Business Development Agency Center with Local Leaders

  • SafeNest Spring Soiree Will Celebrate Kentucky Derby Day, Raise Funds for Critical Survivor Services and Programs

  • Dunkin’® Debuts Vibrant Flavors, Delicious New Ingredients & the Return of Fan Favorites to Make the Most of Sunnier Days Ahead

  • Thrive Wellness Expands Specialized Mental Health Treatment Centers

  • Kara Harris Joins Business Banking Team at First Independent Bank

  • SR Construction Named Design-Build General Contractor For The Hyde Park Commercial Redevelopment Project

  • Angels of Las Vegas Receives $7,000 Grant From Walmart!

  • Great Chef Run Adds Attractions for April 30 Las Vegas Event

  • Rockefeller Group Acquires 6-Acre Parcel In Clark County, Nev. For $4.26 Million; Will Develop 134,100 SF Distribution Center

  • REMSA Health Announces Promotion of Six Leaders Within the Organization

  • BPL Supplies Announces New Customer Service Manager and In-House Art Director

  • LUXUS Design Build Appoints Project Manager

  • Jarrett Seegmiller Joins Ascent Multifamily Accounting

  • KPS3 Announces Michael Lindsey as Art Director



 
Submit Your News & PR | Subscribe
Submit Your News & PR

Business Connection

Business Connection Portal

Log In Sign Up

Business Connection Portal

Log In Sign Up

Nevada Business Calendar

  • Golden Ticket Raffle
    May 31, 2022 12:00 am

    More details...
  • Nevada Workforce: Training, Hiring and Managing Employees
    June 2, 2022 7:30 am

    Location: 6635 West Badura Ave, 180, Las Vegas, NV 89118

    More details...
View Full Calendar ►

Nevada Business Directory

Featured Businesses
Find a Nevada-Based Business Submit Your Business Subscribe to the Nevada News & PR Wire

Nevada Industries

Architects & Engineers
Arts & Culture
Banking
Commercial Real Estate
Construction
Credit Unions
Economic Development
Education
Financial Management
Healthcare
Human Resources
Insurance
Law
Manufacturing
Marketing
Media
Mining
Philanthropy
Residential Real Estate
Rural Nevada
Sports
Tax Planning and Accounting
Technology
Telecom
Tourism
Transportation
Utilities

Footer

Subscriptions

  • Print Subscription
  • Mobile App
  • E-mail Subscription

Editorial

  • Features
  • Departments
  • Events

Advertising

  • Advertise
  • Submission Requirements

Connect

  • Contact
  • LinkedIn
  • Facebook
  • Twitter

Copyright © 2022, Business Link LLC dba Nevada Business Magazine and Nevada Business Journal. Privacy Policy | Terms & Conditions
Nevada Web Design services by Nevada Central Media using Genesis Framework by StudioPress

    *Your Name

    *Your Email

    Phone Number

    Company

    *Subject

    *Your Message

      *Your Name

      *Your Email

      Phone Number

      Company

      *Subject

      *Your Message

        *Your Name

        *Your Email

        Phone Number

        Company

        *Subject

        *Your Message

          *Your Name

          *Your Email

          Phone Number

          Company

          *Subject

          *Your Message

            *Your Name

            *Your Email

            Phone Number

            Company

            *Subject

            *Your Message

              *Your Name

              *Your Email

              Phone Number

              Company

              *Subject

              *Your Message

                *Your Name

                *Your Email

                Phone Number

                Company

                *Subject

                *Your Message

                  *Your Name

                  *Your Email

                  Phone Number

                  Company

                  *Subject

                  *Your Message

                    *Your Name

                    *Your Email

                    Phone Number

                    Company

                    *Subject

                    *Your Message