Effective Cybersecurity Strategy

  • "Secure IT" and IT are the same thing
  • IT & cybersecurity strategy is a continuous process
    • Not a quarterly or annual compliance assessment
    • Not a checklist-style approach to compliance
  • No IT strategy results in..
    • a false sense of security
    • an inappropriate allocation of resources
  • Cybersecurity strategy = comprehensive, holistic, risk-based approach

 

Effective cybersecurity strategy =
Successful digital transformation strategy

 

No digital transformation project should ever start
without understanding its security implications

 

 

Security teams (today)...

... are seen as slowing down (blocker of) digital transformation 

... are seen as the "Office of No"

... work independent

... have to transform as well

 

Security teams need to...

... become agile, flexible, quick and an enabler of digital transformation

... change to "Let's see how we can do this as fast and safely as possible"

... make security everyone's responsibility

... integrate security at the speed of digital transformation

... be involved in digital transformation projects from the beginning

Multicolored icons on a pallet with a padlock on it. Icons are a house, Databases, laptop, computer screen, play button, watch, water tap, lightbulb, Hard disk array, electrical cord, camera, mobile phone, antenna

There is NO 100% Cybersecurity

 

Organizations cannot eliminate 

all cyber vulnerabilities or risks

 

The Reality

 

People make mistakes
Machines break
Accidents happen 


Failure is normal - There will be an incident

Assume breach

 

The Goal

 

Need to focus on
prevention, detection, containment and response

but... 

 

Resilience

is the main goal

four Arrows on a signpost with the words "Evolve", "Adapt", "Change", and "Survive".

Adapt Strategy to Evolving Threats

 

Expanding cyber attack surface,
increasing complexity, high payoff,
low probability of getting caught and minimal penalties


= Favorable calculus for threat actors

 

Blue right pointing arrow with the words "Shifting Cybersecurity Posture".

Passive

  • Encryption
  • Application whitelisting
  • Identity & access management
  • UEBA systems
  • Education and training
    (should already be doing)

Active

  • Monitoring
  • Attribution
  • Disruption of ongoing attacks
  • Threat intelligence

 

Offensive

  • Stealing data back
  • Reverse DDoS
  • White hacker malware

Active Defense

 

Proactive monitoring, dynamic, intrusion detection and incident response 

  • Static, network-based security perimeter is no longer sufficient
  • Anticipate attacks before they happen
  • Detect and respond to attacks in real time
  • Establish traps and alarms to contain attacks

Utilize threat intelligence and security analytics

  • Attribution
  • Know what “normal” looks like

Puts organization on a proactive (preventative) rather than reactive posture

  • "Hunted" to hunter
  • Penetration (PEN), Fuzz (Fuzzing) testing and table-top exercises (TTX)

Use ring architectures to protect critical asset

Let us help you develop an effective cybersecurity strategy

Cybersecurity Strategy