Barely a month goes by without a new headline about a major digital, or cyber, security breach somewhere around the globe.
Recently it was Sony Pictures, with hackers releasing confidential data, including personal information about employees and their families, copies of (previously) unreleased films, and other commercially sensitive information.
In another well-publicised breach, cyber thieves hit Target in the US, stealing massive amounts of credit and debit card information including the names, addresses and phone numbers of 70 million customers.
Boards and senior management are rightly concerned about digital security. A recent survey by PwC found that three quarters of CEOs said it was a key risk to their growth.
Many boards have traditionally viewed this largely as a technology issue and left it to the CIO to deal with. The technology team then set about 'beefing up' security, often with the unintended consequence of creating systems that are difficult for customers or third parties to interact with. They may be safe, but are they effective?
In a world where digital technology is changing customer behavior and business models at an exponential rate, creating enormous opportunities for growth, digital security is not just a technology issue - it's a business issue.
At the heart of this business issue is the question of trust. Trust is the critical ingredient to enable companies to succeed in the digital economy.
Simply, can your customers trust that you will protect their information and their privacy? Can you trust your supplier's systems to work securely and effectively? Can they trust yours?
Looking at digital security through the lens of trust means you are considering the wider business context in which you operate. You are taking into account the needs of your customers, suppliers and other key stakeholders - the opportunities as well as the risks.
Trust is hard won and easily eroded. Ultimately it's about having confidence that you have the right systems, processes and controls in place.
Boards and their risk committees have an important role to play by asking the right questions of management. Too often boards ask 'how strong are our security controls?', when they should be asking 'do our customers and other key stakeholders trust us and how do we maintain this trust?'
Here are some critical questions to determine how digitally trusted your company is:
Digital trust is as much about opportunity as it is risk. And it's the companies that are 'trusted' to whom customers will increasingly turn in the digital economy. How does your organisation stack up?