Home
About Us
Our StoryContact UsAdvertise With UsOur Media PackOur Team
Latest News
Corporate Social ResponsibilityCATEGORYFinanceCATEGORYInnovationCATEGORYLeadershipCATEGORYLegalCATEGORYM&ACATEGORYStrategyCATEGORYTechnologyCATEGORYView All Articles
Issues (Magazine)
May 2026LATESTApril 2026March 2026View All Publications
Our Awards
Current AwardsArchived AwardsRecent Winners
SubscribeFREE

© Copyright Acquisition International 2026 - All Rights Reserved.

Article Image - Organisational security and the hidden risk
Posted 20th January 2021

Organisational security and the hidden risk

The security needs of businesses vary greatly dependent on the sector they are in. Despite the varying requirements, each business’ broader approach to security should follow a similar format where vital assets – those that needs to be protected - are surrounded by several security layers.

Mouse Scroll AnimationScroll to keep reading
Let us help promote your business to a wider following.
Chat To Sales See Our Awards

Home » News » Strategy » Organisational security and the hidden risk

Organisational security and the hidden risk

security

By Chris Johnson, Head Business Development Digital Services at MASS

The security needs of businesses vary greatly dependent on the sector they are in. For example, the financial sector is generally more developed than others due to the potential risks associated with a security breach. Despite the varying requirements, each business’ broader approach to security should follow a similar format where vital assets – those that needs to be protected – are surrounded by several security layers.

This approach helps ensure that if the first or even second layer is breached, the asset is not compromised or put at risk. But too often security measures are not thought about holistically, with physical, cyber and personnel risks all considered individually when in fact they are intrinsically linked. Often, there are hidden risks that may not even have been considered.

Here, we’ll explore the rounded approach that MASS takes with both public sector and defence organisations, and how this can be applied to improving security within all facets of the private sector.

 

Physical security

The first and most obvious security consideration should always be physical access to the organisation’s building or site. Even in sectors where physical security is well established such as finance or data centres, it remains vital.

Identifying the perimeter is fundamental, due to the potential of distributed site facilities, linked remote assets and supply chains, the perimeter may not be as clear as initially thought. To achieve this, the use of scenario-based analysis actor personas, motivations and objectives can be invaluable for exposing how a business could be targeted and exploited.

This should include a review of the physical barriers that prevent access to the site and their role as a deterrent and detection method for hostile activity.

But security measures are only as secure as the people applying and adhering to them. Factors including staff making simple mistakes (such as wearing security badges in the street) or poor motivation of roving security staff or those monitoring CCTV can cause warning signs to be missed – and allow for future security breaches to slip through the gap.

 

Cyber security and the aging risk

The risk of cyber exploitation has grown considerably in recent years due to the financial and technical barriers to advanced cyber-attacks being reduced. For this reason, levels of cyber security must be taken to a new level and any existing measures continually scrutinised.

The COVID-19 pandemic has brought this issue to the fore, with homeworking and remote access highlighting the importance of cyber security, and also shining light on the risks posed by aging equipment and systems.

Throughout 2020 the challenges associated with using legacy data systems have been highlighted, and with increased traffic and offsite access the user experience has become slow and often with intermittent access. Legacy systems are also more challenging and expensive to protect.

The efficient transfer of business data from legacy systems onto a modern platform and data warehouse can not only help protect information more effectively from cyber threats but is also often a more effective use of resource when compared to protecting legacy systems.

To help mitigate network cyber risks, penetration testing regimes can be vital but tools like ‘CBEST’ only offer a snapshot in time and therefore have limitations. Frequent, lighter touch assessments enhanced by modern threat intelligence techniques are recommended in line with these tools as they offer a more dynamic view of vulnerabilities.

 

Consider insiders

Those who might misuse legitimate access to an organisation’s assets are known as insiders and are often overlooked. Many security controls are now so effective that exploiting those with legitimate access is one of the only ways to circumvent them. The right insider or team of insiders can overcome almost all security measures, while insider breaches have a disproportionately high business impact.

Insider cases are typically individuals who have had a personal vulnerability exploited or have become disgruntled with an employer, and it is a challenging area to address. That being said, security culture, employee wellbeing and employee sentiment are just some aspects that a business committed to its security should consider.

It’s also prudent to examine the wider supply chain. Many businesses rely on an interconnected network of suppliers which makes it difficult to pinpoint risk, so identifying ‘hot-spot’ areas allows them to filter complex information and establish risk effectively.

 

Changing times

If these layers of security are not considered collectively, some areas can fall through the cracks. The COVID-19 pandemic has had an unforeseen impact on security, with some companies experiencing a change in working practices or accelerated growth. Yet their data is stored on legacy systems which unless addressed, are cyber-attacks just waiting to happen.

At MASS, our security experts consist of professionals with extensive experience in preventing security breaches and managing data from mission critical systems. We ensure our security analysis meets and exceeds industry best practice.

MASS has recently launched its Virtual Learning Environment allowing us to conduct Cyber Security Training remotely for whole organisations, individuals or management teams. For more information, please visit: https://www.mass.co.uk/what-we-do/mass-online-training/online-training-courses/

Categories: Strategy

Sidebar Image - Our Awards
Our Awards

Discover our award winners and nominate businesses you know deserve recognition!

View Our Awards
Sidebar Image - Our Issues
Our Issues

Keep up to date with industry leading news, and key business features.

View Our Issues
You Might Also Like
Read Full PostRead - Eye Icon
Working From Home Can Slash Payback Periods for EV DriversFinance
10/11/2022Working From Home Can Slash Payback Periods for EV Drivers

According to insight from the Office for National Statistics (ONS), more than 38% of the UK workforce now enjoy either a part-hybrid or totally remote role. While sceptics have suggested that this trend will begin to fall in-line with retreating COVID-19 cases

Read Full PostRead - Eye Icon
The Communication Blueprint for a Seamless Merger and AcquisitionM&A
24/09/2025The Communication Blueprint for a Seamless Merger and Acquisition

Mergers and acquisitions (M&A) can be stressful for each company involved. Balance sheets must look positive, but leadership also deals with human livelihoods. Meshing two organizations means juggling people, assets and customers.

Read Full PostRead - Eye Icon
Consumer Spending on Mobile Devices Set to Top £53 Billion a Year by 2024Finance
14/04/2015Consumer Spending on Mobile Devices Set to Top £53 Billion a Year by 2024

Consumers are set to spend £53.6 billion a year using their smartphones and tablets by 2024, compared with the £9.7 billion spent today, according to new research by Barclays.

Read Full PostRead - Eye Icon
Data-Driven Resilience: Integrating External Data into Corporate StrategyStrategy
16/04/2026Data-Driven Resilience: Integrating External Data into Corporate Strategy

Business performance is shaped by far more than what happens inside a company. Demand can change quickly, supply chains can stall without much warning, and operational risks often build outside an organisation’s control long before they show up in a dash

Read Full PostRead - Eye Icon
5 Ways to a Successful Freelance CareerInnovation
10/03/20235 Ways to a Successful Freelance Career

The success or failure of your freelance profession depends on your clients. You must have a solid grasp of how to interact with your customers and be conscious of the fact that no two clients are alike.

Read Full PostRead - Eye Icon
Afimilk Announces Acquisition of Silent HerdsmanFinance
15/02/2016Afimilk Announces Acquisition of Silent Herdsman

Afimilk, Ltd., a global provider of dairy farm management solutions, announced it has acquired Silent Herdsman, a private VC-funded company from Glasgow, UK and developer of a neck-collar monitoring system used to detect estrus and health problems in dairy cow

Read Full PostRead - Eye Icon
Incredible Legal SuccessLegal
14/09/2020Incredible Legal Success

Finding an attorney who can handle jury cases in a range of different areas is always difficult, but very few manage to achieve such exceptional results as Olivier Taillieu. Distinguished and respected by his peers, he’s a light in the legal system. In Acqui

Read Full PostRead - Eye Icon
Agentic AI and Data Protection: Safeguarding Against New ThreatsInnovation
05/02/2025Agentic AI and Data Protection: Safeguarding Against New Threats

Agentic artificial intelligence (AI) seems like an enterprise’s ideal. Most AI requires constant oversight and guidance, while agentic versions are autonomous and self-motivated.

Read Full PostRead - Eye Icon
Global Company with a Homegrown HeartLegal
16/02/2022Global Company with a Homegrown Heart

We take a closer look at ParrisWhittaker in light of it being named Most Outstanding Maritime Litigation Firm 2021 – Bahamas by Acquisition International magazine.

View More Articles
Advert banner - ACQ - The SaaS-ies 2026  AD
Our Trusted Brands

Acquisition International is a flagship brand of AI Global Media. AI Global Media is a B2B enterprise and are committed to creating engaging content allowing businesses to market their services to a larger global audience. We have a number of unique brands, each of which serves a specific industry or region. Each brand covers the latest news in its sector and publishes a digital magazine and newsletter which is read by a global audience.

CEO Monthly
SME News
Wealth & Finance International
APAC Insider
MEA Markets
GHP News
BUILD Magazine
LUXlife Magazine
Corporate Vision

MORE BRANDS

Arrow
Singing Waiters In The UKHarrys Bar NewcastleEmperor GroupNew Forest Dyson CentreLadyCPRBenton Piping SystemsSouth African Hall of FameActivity Pembrokeshire LtdIT Good LtdMawboardsEnergy and Thermodynamics Research Organization (ENTRO)CLB BURKINA SARLNine BlaessEbersohnsSUE B TarotBrilliant Future ABIn-SightLos Angeles Jewish Symphony (LAJS)VizitARGraphicscalve SpALos Angeles Convention CenterEnuit LLCOrigen Financial ServicesLittle RebelsSicily XperienceLairdGo EO LtdThe Floral GemChemcessAltruist GroupAsociacia Stop! Violencia De GaNero DigitalLatestsale.com LimitedUniversity of Staffordshire.MIDASGodfather Antiques