Chuck Leaver – Now There Is A Focus On People With The Third Phase Of Cyber Security

Written By Kyle Flaherty And Presented By Chuck Leaver Ziften CEO

 

Cyber attack effect on organizations is frequently uncomplicated to measure, and the vendors of tech services are always showing off different statistics to reveal that you have to get their latest software (also Ziften). But one fact is extremely stunning:

In The Previous Year Cyber Crime Cost Businesses $445 Billion And Cost 350,000 Individuals Their Jobs.

The monetary losses are easy to take on board despite the fact that the amount is large. However the 2nd part is concerning for all connected with cyber security. People are losing their employment because of what is occurring with cyber security. The circumstances surrounding the job losses for all these individuals is unknown, and some could have deserved it if they were negligent. But the most interesting aspect of this is that it is well understood that there is a shortage of skilled people who have the ability to fight these cyber attacks.

While individuals are losing their jobs there is likewise a need that more skilled people are discovered to prevent the ever increasing danger of cyber attacks. There is no argument that more individuals are needed, and they need to be more skilled, to win this war. However it is not going to take place today, this week or even this year. And while it would be wonderful if a truce could be negotiated with the cyber hackers until these resources are readily available, the reality is that the fight needs to go on. So how do you combat this?

Utilize Technology To Enable, Not Disable

For several years now vendors of security tech have actually been selling technology to “prevent and block” cyber attacks. Then the suppliers would return afterwards to sell the “next generation” solution for preventing and stopping cyber attacks. And after that a few years later they were back again to offer the most recent technology which concentrated on “security analytics”, “danger intelligence” and “operational insight”.

In every scenario companies acquired the latest technology then they needed to add on professional services or perhaps a FTE to operate the technology. Of course each time it took a considerable amount of time to become up to speed with the new technology; a group that was suffering from high turnover because of the competitive nature of the cyber market. And while all this was going on the attacks were becoming more persistent, more sophisticated, and more routine.

It has to do with People Utilizing Technology, Not The Other Way Around

The problem is that all of the CISO’s were focussed on the technology initially. These organizations followed the classic design of seeing a problem and producing technology that might plug that hole. If you think about a firewall, it literally develops a wall within technology, utilizing technology. Even the SIEM technology these organizations had installed was focused mostly on all the various connectors from their system into other systems and collecting all those details into one place. However what they had instead was one place since the technology centric minds had actually forgotten an important component; the people involved.

People are constantly good at innovating when faced with threat. It’s a biological thing. In cyber security today we are seeing the third phase of development, and it is centered on individuals:

Phase 1 Prevent by constructing walls
Phase 2 Detect by constructing walls and moats
Phase 3 View, examine, and respond by examining user habits

The reason that this has to be focused on people is not just about skill lacks, but because individuals are truly the issue. Individuals are the cyber hackers and also the ones putting your company at risk at the endpoint. The technologies that are going to win this fight, or at least enable survival, are the ones that were constructed to not only enhance the abilities of the individual on the other side of that keyboard, however also focus on the behaviors of the users themselves, and not simply the technologies themselves.

~leaverchuck1


No Responses Yet to “Chuck Leaver – Now There Is A Focus On People With The Third Phase Of Cyber Security”

Leave a Reply