Sponsored by:
Produced by:
Ash Hunt
GLOBAL CHIEF INFORMATION SECURITY OFFICER
Have changing working habits created new threats for security professionals and what can they do to stay on top of them?
When it comes to detecting cyber threats that can cause real business harm and loss, we’re often looking in the wrong places. There is a short-sighted assumption that threats will only come from the perimeters of our network, attempting to penetrate confidential resources. But in reality, the greatest potential for harm often comes from within our networks, typically a case of human error. Inadvertent data disclosures, sending emails with confidential data to the wrong person and other mundane mistakes are the real threats to a business. As a result of the global pandemic, remote working has become increasingly common - increasing the likelihood of mundane mistakes leading to business harm. To tighten their internal security, CISOs need to look first at improving their remote working environment. Remote desktop services and private network access are a great place to start when aiming to create secure, tunnelled access to corporate resources. From there, User Entity Behaviour Analytics (UEBA) should be your next port of call. It will allow you to detect user behaviour across different pieces of technology within your business, before crafting specific detective and preventative measures that can run autonomously. This will empower you to stay one step ahead of potential threats by not losing large chunks of time to manual risk analysis.
When it comes to detecting cyber threats that can cause real business harm and loss, we’re often looking in the wrong places.
Once you have a robust understanding of what your business needs really are, then it becomes much easier to build a lean infrastructure that avoids duplication in your systems.
How can CISOs create lean tech stacks without compromising on performance?
Your security stack should be working for your analysts, not the other way around. If they’re not working in lockstep, then the potential for missed threats increases. When businesses first moved away from on-premise infrastructure in favour of cloud options, there was a sharp increase in the number of bespoke security providers - leading to bloated tech stacks in enterprise firms. We are now seeing the consolidation of tech stacks again as enterprise cloud providers such as Amazon and Google offer a suite of ancillary services that negate the need for smaller, bespoke security solutions. Even the loss exposure of downtime is significantly reduced as a result of the billions they have invested into their cloud infrastructure. Considering that many CISOs are often working to a tight budget, it is worth investigating the extra services that may already be available to them without paying any extra - this could allow you to reduce bloat in your tech stack and save cost for other priorities. Once you have a robust understanding of what your business needs really are, then it becomes much easier to build a lean infrastructure that avoids duplication in your systems.
What impact can automation have on information security professionals?
When used correctly, automation in information security can improve the work-life of your team and reduce staff attrition. When talented staff are stuck performing mundane ticketing tasks that are repetitive and monotonous, it’s no surprise that they seek new pastures. They should be engaging in investigatory ways, problem solving and being creative about how we can craft the next generation of security solutions. Legacy setups are often to blame for this way of working and automation provides a huge opportunity to break the monotonous cycles. Automation won’t replace the skill sets of your employees, but it will empower them to perform more meaningful work - thereby keeping them engaged with your company and far less likely to leave.
When talented staff are stuck performing mundane ticketing tasks that are repetitive and monotonous, it’s no surprise that they seek new pastures. They should be engaging in investigatory ways, problem solving and being creative about how we can craft the next generation of security solutions.
Apex Group Ltd., established in Bermuda in 2003, is a global financial services provider. With 85 offices in 42 countries worldwide and 10,000 employees upon the close of announced acquisitions, Apex delivers an extensive range of services to asset managers, capital markets, private clients and family offices.
