• Tim Fletcher, Director |
3 min read

Cyber security is high on the list of every organisation’s concerns. Many view their cyber function as reactive and defensive, defined by fears, uncertainty and doubt. But that’s not how we see it.

KPMG views cyber as a critical element of any organisation’s technology transformation – part of the systems needed to help a business fulfil its strategies and objectives. Organisations that get this and weave cyber security into the fabric of their business build trust in their technology agenda, protecting their brand and boosting the value of their organisation.

Corporate awareness of cyber is generally driven by risk factors, technology protection and responses to situations. Much of the attention given to this topic comes from boards which are sensitive to the broader systemic risk that effective cyber security helps to address; cyber risk assessment forms a central plank of their risk and resilience frameworks.

This increased attention is driving forward-thinking enterprises to focus on how to transform their cyber capabilities through technology. Similar to the transformation of any other business process, the challenge is to do this across all of the organisation rather than taking a siloed approach to what has too often been seen as a discrete and stand-alone problem – and to achieve results in a volatile and rapidly changing landscape.

KPMG Powered Enterprise | Cyber is designed to overcome the challenges associated with complex cyber transformations. The solution brings KPMG’s deep functional understanding to bear to focus on delivering business outcomes by combining the six layers of the Target Operating Model: Functional Process, People, Service delivery model, Performance insights and data, and Governance. We use this to help clients transform their cyber capabilities on their chosen technology platform to get processes up to speed – fast.

This is achieved by starting with the model answer of what “good should look like”, with the client setting the right objectives for them within the context of a pre-designed framework. This allows for a more rapid transformation with reduced associated programme risk, and enables establishment of a platform and approach that fosters continuous innovation as the model continually evolves.

The speed of the transformation, measured in weeks rather than months or even years, is one of the greatest benefits of KPMG Powered Enterprise | Cyber. Another is the integrated and standardised response that spans the cyber components across the organisation. This enables everyone in the organisation – whether in cyber or not – to understand the current situation and play their part in protecting the organisation.

Within the solutions we have focused on the key issues that our clients face. The first is identity and access management. Internal access fosters collaboration, innovation and speed while external access enables seamless customer connections. However, managing identity access across many different systems and software platforms can be a complex challenge.

The second major issue is security operations; specifically reducing vulnerabilities across the organisation, and improving and speeding up responses to incidents. Organisations need to lessen the risk of unknowns and be able to deal with problems quickly and effectively.

The structured approach to KPMG Powered Enterprise | Cyber transformation offers a proven methodology which hinges on trust to tackle both these issues. Our technology enables the security and identity management operations and processes to orchestrate trust across the technology estate and to build up trust in the organisation’s digital processes across the stakeholder groups. The technology works in tandem with client processes as a layer that sits on top of a well-defined technology architecture to deliver value across the organisation.

KPMG Powered Enterprise | Cyber brings rapid transformation to cloud security capabilities. It pushes them up the maturity curve at pace to bring more rigour into cybersecurity for both the security function and the broader organisation, delivering value through increased control and important insights.

For more information, visit our webpage