Explore. Inspire
Article 30 Mar 2021

Cyber Risks and Reputation: Guidelines for managing them

Security threats related to information technologies (IT), which focus on data transfer, processing, and storage, are among the top risks threatening the development of companies and institutions.

In its “Report on Global Risks 2020,” the International Monetary Fund names cyberattacks on infrastructure and for the purposes of data theft, fraud, and financial theft as one of the ten risks most expected to increase, according to the experts consulted. It also points to the loss of privacy tied to technology as being among the risks that are increasingly concerning young people.

The facts confirm this outlook. Cybersecurity company Fortinet recorded as many as 41 billion cyberattack attempts against just Latin American companies in 2020. The first year of the COVID-19 pandemic was also a year of exponential increase in telecommunications usage across all social areas due to the global lockdowns. According to Verizon’s “Data Breach Investigation Report,” events that compromised the integrity, confidentiality, and availability of information assets grew by 55.7% in 2020.

It is clear that cyber risks represent a threat to activity and business continuity. They not only cause a potential loss of economic and financial assets, but also pose a serious threat to the share and relational capital (license to operate, reputation, brand, recommendation, etc.) of any entity.

Risk consultancy firm AON explains this in its “Study on Cybersecurity and Management of Cyber Risks in Spain” as follows: “If an organization is attacked or suffers a cybersecurity incident and the cause can clearly be shown to be a lack of security measures, this translates into a lack of confidence” – or reputational damage – “that affects goodwill, commercial image, and potential to generate business.”

In fact, reputational cyber risks are also a growing concern for communication professionals. The “European Communication Monitor 2020” found that around 45% of them say they have managed a cyberattack crisis in their company. However, shown by this study, “only a minority are involved in helping build resilience” to these threats. Specifically, just 25.3% have worked to educate employees on preventing cyberattacks, less than 20% have developed specific protocols to manage these incidents, and fewer still (18%) have implemented specific cybersecurity technologies.

As can be seen, there remains a great deal to be developed on reputation crisis prevention and preparation in the area of cyberthreats. This guide aims to share some concepts, strategies, and simple processes to protect stakeholder opinions regarding organizational conduct in response to these incidents.

Iván Pino
Partner and Senior Director of Crisis and Risks at LLYC
Journalist with a degree in Information Sciences from the UCM. He holds a Master's Degree in Sustainability and Corporate Responsibility from UNED-UJI and has more than 20 years of experience in Communications and Reputation. He managed communications of the port authorities of Ferrol-San Cibrao and A Coruña. He has advised reputational risk management to companies such as Inditex, Mercadona, Repsol or CaixaBank, among other large companies and institutions. His specialty is focused in communication and digital marketing. Iván is co-author of "Claves del nuevo Marketing. Cómo sacarle partido a la Web 2.0" (2009, Gestión 2000) and editor of the first ebook in Spanish on social media communication: Tu Plan de Comunicación en Internet. Step by Step (2008). Teaching and providing lectures is also a part of his job. He has taught in the Customer Experience Management Executive Program at IE Business School, and in Corporate Communication Masters at Universidad Carlos III, Universidad Complutense de Madrid and Universidad de Cantabria.
Daniel Fernández Trejo
Chief Technology Officer at LLYC
He currently heads up the Technology business unit and is the company’s global CTO. He has worked for 13 years in the design, implementation and launching on the market of multi-device internet services and platforms, having spent a large part of his career working with dynamic international teams, in which he stood out for his coordination and management skills, leadership and teamwork. Daniel joined LLYC in 2011 as Accounts Manager of the Online Communication business unit and in 2017 he was appointed Global CTO. Over the years he has been at LLYC, he has collaborated with companies such as Enagas, Cepsa, Gonvarri Steel Industries, Bertelsmann, L’Oréal and Acciona, among others.
Do you want to know more about it?

      We want to collaborate with you

      Do you have a challenge?

      Would you like to join our team?

      Do you want us to speak at your next event?