FEATURE : THREAT ASSESSMENT and we do not rigorously test them , only to find these technologies are fundamentally insecure and flawed and this needs to change .
Likewise , in tandem to this change in approach to how we build technology , infosec teams need to think and act differently . They need to be more proactively hunting down threats , pre-empting the adversary ’ s next move .
For example , let us look at what we can learn from how a secret service agent investigates financial crime and / or protects dignitaries and how we can apply this to cyber . As I mentioned , infosec teams must anticipate threats and they must follow the data , just like they follow the individual .
Secret service agents are trained to think differently and to think like the enemy . They
must at once react to a threat because they assume there is more to a threat than that one individual .
So how do we apply that theory to incident response and infosec teams and the modernization of incident response ?
Over the last few years , it has become clear that our enemies are emboldened and becoming more aggressive .
We must shift thinking and tactics to begin to turn the tide . And I believe it is fundamental that cybersecurity professionals take a page from the annals of a secret service or military agent to better understand how to combat threats . Defenders need to modernize their cybersecurity strategies and their approach to security technology to stay one step ahead of adversaries . • that is weighing down the current model and way that they do things .
The importance of testing
So why has the industry not addressed this problem until now ?
Again , we can make further parallels with COVID-19 . We did not know how big the problem was because we were not testing enough , but now we can see all the breaches in our systems that already exist . We did not have the right data to measure , meaning much was being missed .
We had some anecdotal evidence but with better visibility , better testing and an intrinsic approach this has revealed that our historic take on infosec was incorrect . And this lack of data has also given us a false sense of security .
As an industry we rush to build technology platforms , and then we rush to launch them ,
SECURITY DOES NOT NEED ANOTHER NEW PRODUCT , IT NEEDS AN
INNOVATIVE APPROACH , ONE THAT COMBINES VISIBILITY INTO APPS , NETWORKS , USERS AND DEVICES . www . intelligentcio . com INTELLIGENTCIO
55