High Reliability Cybersecurity Operations

Breaches in cybersecurity remain a top boardroom concern. But while many companies take a technology-first approach to cybersecurity, most breaches are human-performance related. We address this critical gap.

Despite increased spending, breaches are on the rise

In 2017, an employee at the world’s largest shipping conglomerate saw computer screens suddenly turn black and irreversibly lock. In 2019, the City of New Orleans declared a State of Emergency in the aftermath of a cyberattack on all government computers. And later that year, a ransomware attack toppled an Arkansas-based telemarketing firm, causing it to suspend operations and leave hundreds of employees jobless days before Christmas. These are the nightmare scenarios that everyone dreads and no one is immune, even the most sophisticated companies. But how are such incidents prevented? The right technology is imperative, of course, but that is insufficient—as reflected in the growing number of serious incidents.

2022 updated cybersecurity page updated graphic v1

 

Human Performance: The missing layer of defense in a complex world

While companies continue to focus their investments in cybersecurity in technology, more than 95% of breaches are attributable to breakdowns in human performance. Failure to update software, poor password protocols, lack of compliance—cyber breaches are rarely due to the lack of sophistication of the technology. Unfortunately, adding additional layers of technology can sometimes inadvertently exacerbate the situation. As technology complexity increases, the points of potential breakdown grow geometrically. The net effect is an increase—not improvement—in enterprise cyber risk.

Vicious Technology-led Cycle-1

Enter the High Reliability Cybersecurity Operations (HRCO)

Fortunately, an analog exists for how to address this type of risk, and leverage human performance as a critical layer of defense: the High Reliability Organization. HROs came of age in the energy industry in response to growing industry complexity and catastrophes such as Deepwater Horizon.

HROs are defined by a set of behaviors that are uniquely capable of navigating highly complex, distributed environments where the threat of catastrophic risk is ever-present, and constantly changing. They are unwaveringly watchful, prepared to catch the unexpected. They identify emerging issues early and learn from every event, leading to systemic knowledge. We make it possible for any company to measure its alignment with HRO behaviors, then address the gaps.

HRCOs employ these HRO principles to provide an additional layer of cybersecurity: human performance. Companies need the right technology, but even the best technology will fail, or become obsolete in the face of ever-more-sophisticated hacks. Strong protocols and procedures are imperative, but even those won’t account for every scenario. At the end of the day, inculcating HRCO behaviors is critical because when technology and process fail, human performance is all that’s standing between you and a cyberattack.

increasing threat landscape

WP&C is the leader in helping large enterprises maximize human performance to minimize risk

We leverage our deep HRO expertise and broad technology strategy experience to help you close what is the single biggest cybersecurity gap in most organizations. WP&C delivers leading cyberoperations performance without the complexity and risk of a tech-centric approach by addressing all three critical drivers of cyber operations excellence—Technology, Processes, and Human Performance. We are the leader in implementing HRCO practices and will help you reduce incident, breach, and compliance risk while minimizing costs.

Technology Complexity Impact on Cybersecurity Risk
VANTAGE POINT

Will Your Enterprise Survive the Cybersecurity War?

Because most cyberbreaches are caused by human error, cybersecurity technology can only be successful if accompanied by disciplined human performance. Learn how a new class of management system is the only path to protection—providing enterprises with tools to analyze, control, and continuously improve operational discipline and human performance.

Read the Vantage Point

Cyber war vantage point cover
QUIZ

How does your cyber discipline impact your risk?

95% of cybersecurity incidents are caused by failures in human performance. You have cybersecurity policies, controls, and operational procedures in place. But in increasingly complex IT environments, your team will make mistakes—and when they do, even your best protections can fail. This short quiz is designed to provide a useful diagnostic that indicates how cyber discipline is impacting your overall level of cyber risk.

Take the Quiz

cyber quiz 2
Post-Pandemice Priorities

Protect your company from cyberthreats targeting remote-work vulnerabilities

It is critical at this juncture to take two sets of actions—upgrade your security protocols for the new work-from-home dynamics and assess your organizational readiness to defend against cyberthreats along three lines of defense. Measuring your company’s alignment with the behaviors of High Reliability Cybersecurity Operations (HRCO) will allow you to identify vulnerabilities due to human performance and develop new lines of defense. 

Read More

Cyberthreats in the era of remote work - Copy
PUBLICATIONS

The Unaddressed Gap in Cybersecurity: Human Resources

Without addressing this issue of human performance, a vicious technology-led cycle leads to increased cybersecurity incidents. Read WP&C's latest cybersecurity research published by MIT Sloan exploring the High-Reliability Cyber-Operation. 

Read the Article

MIT cybersecurity artwork v2
growth-in-the-age-of-complexity-drop-shadow
New!

Growth in the Age of ComplexitySM

In our latest book, learn how to navigate the Sirens of Growth® and build true scale in today’s new era of competition.

Download Chapter 1
“WP&C is helping us transform our business. Their insights are phenomenal!”
Dave Hoogmoed
Dave Hoogmoed, President Land O’Lakes Purina Feed
“Wilson Perumal & Company's approach treats complexity as the enemy. Declaring war is the most direct route to an efficient, profitable enterprise. We declared war on the complexity in our portfolio, resulting in streamlined customer offerings and a more nimble business.”
Ed Lonergan
Ed Lonergan, President and CEO Diversey, Inc.
“This was a quick and painless way to understand our true product profitability, and it challenges how we think about our business. I am extremely pleased with the results.”
Fernando Palacios
Fernando Palacios, EVP and Chief Integrated Supply Chain Officer MillerCoors LLC
“WP&C’s insights into our portfolio, cost structure and growth drivers have changed the way we think about our business. The brand management playbooks they developed for the business will be critical to how we make decisions going forward.”
Hilliard Lombard
Hilliard Lombard, Managing Director Valeo Foods Group Ltd.
“I have been more than pleased with what you have been able to accomplish in this time. Beyond my expectations...Spectacular!”
Peter Benton
Peter Benton, COO Worldwide Clinical Trials, Inc.
“Fantastic piece of work! You’ve really shed a lot of light on our business. Inmarsat will benefit enormously from your contribution and we will be using your structured thinking to guide us through the decision-making to come.”
Rupert Pearce
Rupert Pearce, CEO Inmarsat plc
“If you take all six times [past projects] where we looked at this, over the past ten years, and rolled them all up together, and multiplied by ten, it would still not be as good as this work.”
Bill McNabb
Bill McNabb, CEO Vanguard Group, Inc
“Army personnel credit the collaboration between Joint Munitions Command, CAAA's higher headquarters, and consulting firm Wilson Perumal & Company for identifying areas to improve the munitions distribution process.”
U.S. Army News
U.S. Army News

Featured Resources

Is your company ready for transformation?