• 49976311 | Vitpho | Dreamstime.com
    Transform your cybersecurity: Align strategies with business goals for ultimate resilience

    Wilkens: Be prepared: Strategy, risk, and incident response planning for fleets

    April 15, 2025
    Cybersecurity is now a business imperative. Align your strategy with goals, engage stakeholders in risk management, and prepare incident response plans to safeguard your organization effectively.

    Key takeaways:

    • Make sure cybersecurity strategies support overall business objectives to secure executive support and funding.
    • Engage stakeholders across business units to accurately identify and prioritize risks, making cybersecurity a shared responsibility.
    • Create tested and role-specific incident response plans to ensure readiness and clarity during incidents.

    Cybersecurity is no longer just a problem for the IT team; it’s a business problem. While advanced tools and threat intelligence often steal the spotlight, the true strength of any cybersecurity program lies in three foundational elements: a business-aligned cybersecurity strategy, stakeholder-driven risk registers, and comprehensive, well-rehearsed incident response plans.

    Start with strategy: Align cybersecurity with business objectives 

    Cybersecurity strategy should begin by aligning with the organization’s broader business goals. Whether the focus is on growth, operational efficiency, compliance, or customer trust, cybersecurity must support those objectives—not hinder them.

    That means understanding the business context: What are the most critical assets? Which operations are mission critical? What regulatory requirements apply? What would truly hurt the business if disrupted or exposed?

    In short, the first step is to identify the “keys to the kingdom” that are essential for business success.

    Strategic alignment also encourages executive buy-in and budget support. Cybersecurity leaders who speak the language of business risk are far more likely to secure funding and cross-departmental collaboration than those who focus solely on technical controls. Business leaders speak in terms of return on investment, profit and loss, and business risk. Focus first on the business alignment, then support that overarching goal with the proper technical controls and security processes.

    Build risk registers with the business(s), not in isolation 

    It is not uncommon to find cybersecurity teams attempting to create risk registers in isolation—relying on generic threat models or IT-centric views of risk. Don’t allow this in your organization. Real risk lives where the business operates: in supply chains, customer portals, driver handhelds, dispatch systems, and even in third-party broker relationships.

    To capture and manage risk effectively, cybersecurity teams must partner with stakeholders across all business units so that together, risks can be ranked and prioritized. That includes dispatch, maintenance, HR, legal, safety and compliance, sales, and customer service. Together, they can identify what’s truly at stake across the entire business—lost loads, missed deliveries, legal penalties, reputational damage—everything that could realistically go wrong. Risk should be ranked and prioritized based on impact to the business.

    This collaborative approach to risk registers brings several benefits:

    • Accuracy: Business stakeholders know which processes are fragile, who has access to what, and where past disruptions have occurred.
    • Buy-in: When business units participate in identifying risks, they are more likely to support mitigation efforts.
    • Prioritization: Not all risks are created equal. A cyber event that delays payroll may be a nuisance as recruiting and retaining your professional truck drivers is critical, but an event that disables dispatch during peak demand could be catastrophic.

    Stakeholder-driven risk registers transform cybersecurity from a technical checklist into a shared responsibility—and a tool for informed decision-making. These risk registers also must be living documents as risk is not static. Regularly review and update risk registers as the business evolves and the threat environment changes.

    See also: Upcoming NMFC changes: What fleet operators need to know

    Prepare for the inevitable with incident response plans 

    An incident occurrence is not a “what if” scenario; it is a “when, then what” scenario. What separates resilient organizations from those in crisis is how they respond.

    A well-crafted incident response plan ensures that when something goes wrong, your team knows exactly what to do. But to be effective, a plan must be:

    • Tested: Tabletop exercises and simulations help identify gaps and build muscle memory before a real incident strikes.
    • Role-based: Everyone, from executives to IT staff to fleet managers, should understand their responsibilities during an incident.
    • Communicative: Communication plans should include not only internal communication but also vendors, clients, and valued partners. These external communication plans should be included in contractual agreements. These plans should also include clear escalation paths. Ensure that general business counsel and cyber-counsel are consulted in the creation of these plans to enable proper considerations for informing counsel in a timely manner during an incident.
    • Scenario-specific: A phishing attack, a ransomware outbreak, and a telematics portal breach may all require different responses. The IR plan should account for multiple types of incidents.

    A roadmap to resilience

    Strong cybersecurity doesn’t start with the latest tools or shiny dashboards. It starts with a foundation of clarity, collaboration, and preparation.

    A cybersecurity strategy aligned with business goals ensures your efforts are laser-targeted and supported by the organization as a whole. A risk register built with stakeholder input ensures your defenses address real-world exposures. A well-designed and well-rehearsed IR plan ensures your organization can respond quickly, confidently, and competently when the inevitable happens.

    Together, these foundational elements form the backbone of an effective cybersecurity program—one that can adapt to a fluid threat landscape, evolve with the organization, and support the strategic goals of the business.

    About the Author

    Ben Wilkens

    Ben Wilkens, CISSP, CISM, is a cybersecurity principal engineer at the National Motor Freight Traffic Association. In his role at NMFTA, Ben spearheads research initiatives and leads teams dedicated to developing cybersecurity technologies, methodologies, and strategies to safeguard information systems and networks. He collaborates with academic institutions, industry partners, and government agencies to advance cybersecurity practices and knowledge.

    Voice your opinion!

    To join the conversation, and become an exclusive member of FleetOwner, create an account today!

    Continue Reading

    Sponsored Recommendations

    What challenges are top of mind for fleet professionals in 2025? Get exclusive insights from the 2025 Fleet Trends Survey and discover where the industry is headed next.
    The most successful fleets accomplish more than delivering freight. To accomplish this, fleets need a fuel that’s reliable, more economical and more sustainable. That fuel is ...
    Are your KPIs driving real fleet improvement? Learn how to set smarter, data-driven benchmarks, track success like top-performing fleets, and apply proven strategies to optimize...
    Learn how eets can enhance truck utilization and minimize safety incidents using business intelligence and AI. Delve into innovative practices, technology integration and real...