Business Email Compromise (BEC) , Email Security & Protection , Email Threat Protection

Thwarting BEC Scams That Target Privileged Users

CISO Espen Otterstad on Enterprise Risk Management Geetha Nandikotkur (AsiaSecEditor) • August 13, 2020

Thwarting BEC Scams That Target Privileged Users

Espen Otterstad, CISO, ABAX AS

To help mitigate the risks posed by business email compromise scams that target privileged users, enterprises need to create detailed enterprise risk management plans that spell out procedures to secure accounts, says Espen Otterstad, CISO at Norwegian telematics company ABAX AS.

See Also: LIVE Webinar | Stop, Drop (a Table) & Roll: An SQL Highlight Discussion

In a presentation at the recent RSA APJ conference, Otterstad described why more BEC scams are targeting privileged users.

In this video interview with Information Security Media Group, he offers insights on:

Shortcomings in efforts to detect BEC scams;
The best processes for investigating these scams;
Implementing multifactor authentication methods.

Otterstad is the global head of IT and cybersecurity at the Norwegian telematics company ABAX, which tracks vehicles, equipment, plants and tools. With 20 years of IT and technology management experience, he focuses on developing a security culture.

Previous
More Microsoft Zero-Day Flaws Being Exploited

Next
SANS Institute Sees Its Breach as Teachable Moment

About the Author

Geetha Nandikotkur

Geetha Nandikotkur

Vice President - Conferences, Asia, Middle East and Africa, ISMG

Nandikotkur is an award-winning journalist with over 20 years of experience in newspapers, audiovisual media, magazines and research. She has an understanding of technology and business journalism and has moderated several roundtables and conferences, in addition to leading mentoring programs for the IT community. Prior to joining ISMG, Nandikotkur worked for 9.9 Media as a group editor for CIO & Leader, IT Next and CSO Forum.

You might also be interested in …

Insights on Financial Supply Chain Compromise

►

Insights on Financial Supply Chain Compromise

From CEO Fraud to Vendor Fraud: The Shift to Financial Supply Chain Compromise

From CEO Fraud to Vendor Fraud: The Shift to Financial Supply Chain Compromise

Hacking and Cybersecurity in a New Era

Hacking and Cybersecurity in a New Era

Threat Briefing: Cloud Account Compromise and Takeover

Threat Briefing: Cloud Account Compromise and Takeover

The Definitive Email Cybersecurity Strategy Guide

The Definitive Email Cybersecurity Strategy Guide

Proofpoint Recognized in Gartner® Market Guide for Email Security

Proofpoint Recognized in Gartner® Market Guide for Email Security

Breaking Down BEC

Breaking Down BEC

$4.65 million | The Cost of Phishing Breaches

$4.65 million | The Cost of Phishing Breaches

The State of Email Security 2023: Cyber Risk Has Entered The Boardroom

The State of Email Security 2023: Cyber Risk Has Entered The Boardroom

Around the Network

The Persisting Risks Posed by Legacy Medical Devices

The Persisting Risks Posed by Legacy Medical Devices

Organization-Wide Passwordless Orchestration

Organization-Wide Passwordless Orchestration

Are We Doomed? Not If We Focus on Cyber Resilience

Are We Doomed? Not If We Focus on Cyber Resilience

Whistleblowing Brings Visibility to the Role of CISOs

Whistleblowing Brings Visibility to the Role of CISOs

Showing Evidence of 'Recognized Security Practices'

Showing Evidence of 'Recognized Security Practices'

Craig Box of ARMO on Kubernetes and Complexity

Craig Box of ARMO on Kubernetes and Complexity

Securing the SaaS Layer

Securing the SaaS Layer

Protecting the Hidden Layer in Neural Networks

Protecting the Hidden Layer in Neural Networks

David Derigiotis on the Complex World of Cyber Insurance

David Derigiotis on the Complex World of Cyber Insurance

How 2U Inc. Is Fortifying Its Systems and Solutions Designs

How 2U Inc. Is Fortifying Its Systems and Solutions Designs

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing healthcareinfosecurity.com, you agree to our use of cookies.