Cybersecurity: Companies Face Increasingly Sophisticated Threats. How Can They Defend Themselves?
18 ǀ POSITIV 2/2025
BUSINESS
Cybersecurity: Companies Face
Increasingly Sophiscated Threats.
How Can They Defend Themselves?
Cybersecurity is becoming a crucial issue for companies of all sizes. As Radim Trávníček, CEO
and founder of BESECURED, a company specialising in this eld, explains, businesses are
currently facing several major challenges. “The biggest ones include the growing sophiscaon
of cyberaacks – ranging from ransomware and phishing to DDoS aacks – as well as the shortage
of qualied professionals and, last but not least, the need to comply with demanding legislave
requirements, such as the NIS 2 Direcve or DORA,” Trávníček summarises.
How exactly does BESECURED support companies?
Our goal is to create a secure environment in which
our clients can confidently grow their business.
We assist with setting up security strategies, processes
and technologies while also training employees.
We offer expert consultations, security audits (including
system and penetration tests), and education in the
field of cyber and information security – for regular
staff, management and specialists alike. If needed,
we also provide outsourcing of security roles, supplying
a specialist who manages and develops security within
the client’s environment for a pre-agreed number
of hours.
We specialise in building a security-focused
culture and implementing security standards (such
as ISO 27001, TISAX, PCI DSS) while ensuring
compliance with legislation (ZKB, NIS2, GDPR, DORA).
What mistakes do companies most often make when
implementing cybersecurity and protecting their
data and systems?
The most common mistake is underestimating
the human factor – the majority of attacks occur
due to phishing or employee negligence. Another
frequent issue is the lack of support from management,
which results in insufficient resources for developing
and managing security. Companies also sometimes
place too much trust in their suppliers without regularly
verifying how well the security is actually maintained.
From a technical perspective, common mistakes
include outdated software, the absence of tools
for detecting suspicious activities, poor access
management, and underestimated or completely
missing regular security audits and checks.
Have cyber threats changed recently, and what role
does artificial intelligence play in this?
The number of ransomware attacks, sophisticated
phishing campaigns and DDoS attacks is increasing.
Companies are becoming more aware of the risks, yet
many still haven’t implemented basic measures such
as two-factor authentication or network segmentation.
AI now serves both sides – attackers use it to refine
their techniques, while we use it for anomaly detection,
identifying risks and responding to incidents quickly.
Many companies are currently dealing with
how to prepare themselves for new legislative
requirements such as the NIS 2 Directive. Can you
assist them with this?
Yes. We begin by analysing the client’s current security
status, identifying gaps and helping to implement
the necessary measures – from documentation
and technological solutions to processes such
as incident response, proper data backup, recovery
procedures and experience evaluation.
When building security, it often involves creating new
activities and processes that some may consider slow
or unnecessarily complicated. Believe me, these
are tools that protect company from mistakes that,
in the event of a cyberattack, could end up costing
significantly more.
Thank you for the interview.
These tools protect companies
from mistakes that could cost
them far more during a cyberaack.