IGF 2023 WS #141 Effective Cyber Hygiene Across Strategic Sectors


Cybersecurity, Cybercrime & Online Safety
Cyberattacks, Cyberconflicts and International Security

Organizer 1: Monica Ruiz, 🔒
Organizer 2: Pavel Mraz, 🔒Microsoft

Speaker 1: Thais Batista, Civil Society, Latin American and Caribbean Group (GRULAC)
Speaker 2: Stephane DUGUIN, Civil Society, Eastern European Group
Speaker 3: Monica Ruiz, Private Sector, Western European and Others Group (WEOG)


Monica Ruiz, Private Sector, Western European and Others Group (WEOG)

Online Moderator

Pavel Mraz, Private Sector, Western European and Others Group (WEOG)


Monica Ruiz, Private Sector, Western European and Others Group (WEOG)


Round Table - 60 Min

Policy Question(s)

What has been the evolution of cyber threats across the financial, energy and healthcare sectors?

What are some practical challenges that have surfaced in implementing basic cybersecurity practices and what are the solutions to addressing them?

What is the role of companies, civil society and governmental entities in raising awareness and promoting better cyber hygiene to increase overall cyber resiliency?

What will participants gain from attending this session? Participants will gain an understanding of some of the most effective cyber hygiene practices to mitigate cyber risk. Sharing insights from practitioners and policy experts for what has worked in the past, what hasn’t and how to build resiliency across strategic sectors will also help improve knowledge on how to proactively build better security practices. On the adoption side, this session will help participants understand what simple steps practitioners have taken to protect themselves and their organizations online.


The expansion of cyberspace has brought with it immense opportunity for growth and connectivity. However, it has also increased the scale, speed and sophistication of cyberattacks that target victims worldwide. According to the 2022 Microsoft Digital Defense Report, basic cyber hygiene practices— such as implementing multifactor authentication (MFA), applying Zero Trust principles, using modern anti-malware, keeping software up-to-date and protecting data— can prevent 98 percent of attacks. Clearly, adopting good cyber hygiene is a key step when it comes to reducing the risk of incidents. This session will explore the evolution of the cyber threat landscape and aims to identify effective cyber hygiene practices that have worked across critical sectors, such as the financial, energy and healthcare sectors.

Expected Outcomes

This session is expected to improve cybersecurity awareness and the risks associated with cyber threats while surfacing better cybersecurity practices by providing practical guidance on basic cybersecurity measures. In the context of impending cybersecurity regulation and standards for strategic sectors across different countries, this session on basic cyber hygiene can help participants understand how the protection of sensitive information and the mitigation of cyber risk is handled across the financial, energy and healthcare sectors.

Hybrid Format: 1) I plan to use online tools such as virtual documents all participants can contribute to and virtual survey questions to drive the discussion forward.

2) I will allocate time for both in-person and online contributions from participants. This will allow for a free flow of insights throughout the hybrid session.

3) Similar to what was shared above, tools such as surveys, virtual documents and potentially breakout sessions will be part of this session, so participants actively engage.