“In order to stay secure in the age of ‘Connected Everything’, organisations’ need to understand their people, process, technology and most importantly, the business model. With an increased attack surface area and more devices for an attacker to use, the ability to respond quickly is pivotal.” – says Ryan from Aviva.
How to respond faster and easier in the world of intelligence-driven cyber security fighting the cybercrimes? What is your company doing to keep up with evolving cyber threats?
You respond better if you know your business. That is not just what your infrastructure looks like, but where and how your business operates. This may sound simple, but many global organisations will operate in dozens of jurisdictions, providing multiple services both in a B2B and B2C model. This inherently adds complexity which will always negatively affect your ability to respond.
Threat Intelligence can greatly support this understanding and potentially provide an early warning of your organisation being targeted. Speed is key during an incident, it may allow you to take correct action prior to a breach actually occurring or will limit the damage if it does.
How are AI and ML helping in identifying threats? What needs to be implemented to make it even more efficient?
Signatures and ‘known bad’ are no longer enough to protect your business. That does not mean that technologies that utilise this are no longer needed, but they will require supplementary technologies that use ML.
However, unfortunately ML tools are not enough by themselves. They can heavily reduce the need for staff to undertake less valuable or monotonous activities, but they still require SMEs to operate them and interpret the results.
The question is; have I not seen something in my business because it has not happened or because my ML tool has decided that I do not need to see it? This is a subject I will be covering in greater detail during my presentation.
Does more connected devices mean more attacks? How to stay secure in the age of Connected Everything?
Yes, unfortunately more devices do lead to more attacks. But although this increases the attack surface area of a business, arguably, the greater risk comes from the quantity of devices connected to the internet that an attacker can use. This is seen by organisations’ both large and small when responding to the more sophisticated DDOS, phishing and brute force events.
In order to stay secure in the age of ‘Connected Everything’, organisations’ need to understand their people, process, technology and most importantly, the business model. With an increased attack surface area and more devices for an attacker to use, the ability to respond quickly is pivotal. As organisations grow and become more complex, security teams will have to manage an increased amount of the false positive Cyber Events.
Knowing how your business operates, makes the difference between an appropriate response and failing to identify a material threat. This understanding allows you to respond at pace and the speed of your response will greatly affect the impact cyber events will have on your business.
Ryan SMITH, Head of Global Cyber Detection and Response from Aviva is a Security Leader with over 15 years’ practical experience gained in both the public and private sectors, across multiple roles including; CISO, Senior Delivery Partner and currently as a Global Cyber Operational leader for a transnational FTSE 30 Company.
He is a security professional with sound knowledge of information risk, governance, compliance and responding to the increasing cyber security threat. Experienced in the commissioning, design, control and management of secure IT infrastructure on premise, in the cloud and for hybrid deployments.