by Cameron Jackson, MBA, CISA
Over the past few years, we’ve noticed a shift in breaking news. What was once a reliance on
official news outlets has now been pushed
aside by user-generated content. With
instant access to captivated audiences
through Facebook, Twitter,
Instagram, and countless other
social media platforms, everyone
has the capability to start a media
frenzy. Equally important to note,
corporate mismanagement of social
media is real.
Social media risk and cyber
risk are closely connected and
ultimately an integrated business risk—
business risks that should be front and
center on every board of directors’ agenda
heading into this earnings season and the
year-end. When it comes to disruptive
risk events, such as a cyber incident,
social media is an aggravating factor that
intensifies the cyber incident by adding
fuel to the fire. According to The Wall Street
Journal, “Cyber threats have zoomed to the
top of chief executives’ worry lists for fear
a data breach could cost them their jobs
and take down their businesses.”2 Once
a company discloses a cyber incident, it
immediately impacts their social media risk
posture. As corporate risk and compliance
professionals, this means that we must
be cognizant of the risks of social media
and, more importantly, the remediation
strategies to combat these risks.
The problem social media brings to
enterprise operations is the ability to
quickly create and spread news before
Social media: Steps to
mitigate the most dangerous
» Enterprises must understand the potential outcomes of social media risk and the effect that it can have on their strategy,
brand, and bottom line.
» Take the time to create a social risk triage plan to properly identify and address social risk protocols.
» Actively monitor your social brand mentions to ensure that you understand public perception.
» Have a pulse on the activities of your critical partners and vendors; consider contractual preventive and detective measures.
» Educate your employees on the importance of social presence and professionalism into the “always‑on” social channels.
Jackson Once a company
discloses a cyber incident,
it immediately impacts their
social media risk posture.