facebook
linkedin
twitter
About Us
  • BFSI
  • Energy
  • Infocom
  • Mining
  • Venture
  • Industry
  • Travel
  • Civic
  • Food, Health, Ag
  • Real Estate
  • Responsibility
  • Economy
  • Law & Justice
  • Interview
  • Analysis

Opinion: What to Expect In Enterprise Security For 2016

Posted On December 22, 2015
By : Amit Yoran
Comment: Off
Tag: amit yoran, emc, predictions, rsa

2015 was most notably characterized by security vendors claiming to be able to prevent advanced threat breaches when the reality is, they can’t. It was characterized by enterprises recognizing the need to monitor and defend their digital environments differently, but continuing to center their security programs on the same technologies and approaches they have been using – hoping for a different outcome, but not acting differently.

2015 saw threats continuing to evolve faster than most organizations’ ability to detect and respond to them. What was considered an “advanced” threat in years past has become a commodity today with sophisticated malware and exploits available for the price of a movie ticket. As troublesome as these observations seem, the most impactful evolution goes almost entirely unreported and misunderstood. The threats that matter most, today’s pervasive threat actors execute attack campaigns comprised of multiple compromise methods and multiple backdoors to assure persistence. Incomplete incident scoping has become a critical failure point.

We’re starting to see progress in some areas as security investments begin to shift from a maniacal focus on prevention, toward greater balance on monitoring, detection, and response capabilities. It’s become cliché to say that breaches are inevitable and that faster detection and more accurate incident scoping is the way forward, but too many organizations are trying to do these very different tasks using the technologies and processes they have on hand…not designed nor capable of answering their need. Here are some of the emerging trends that our industry and organizations need to be ready for in 2016:

RSA's Amit Yoran says: "Foolish investments have been made in strategies and technologies that are little more than snake oil."

RSA’s Amit Yoran says: “Foolish investments have been made in strategies and technologies that are little more than snake oil.”

  1. Strategic Data Manipulation and Disruption – Organizations will begin to realize that not only is their data being accessed inappropriately, but that it is being tampered with. Data drives decision making for people and computer systems. When that data is unknowingly manipulated, those decisions will be made based on false data. Consider the potentially devastating consequences of misrepresented data on the mixing of compounds, control systems, and manufacturing processes.
  2. Increasing Attacks on Application Service Providers – As organizations become more comfortable with the “as a Service” model, many of their most sensitive applications and data reside in the Cloud. The aggregation of this valuable data from many companies creates an incredibly lucrative target for cybercriminals and cyber espionage. A deeper appreciation of third party risk is needed.
  3. Hacktivism and the Attack Surface – Per my earlier comment, as cyber-attack tools and services become increasingly commoditized; the cost of attacking an organization is dropping dramatically, enabling more attacks that do not have financial gain as the primary focus. Sophisticated hacktivist collectives like Anonymous have been joined by relatively unsophisticated cyber vigilantes. Organizations need to realize that financial gain is no longer the only or even the biggest driver of some of their adversaries. Security operations and risk managers should evolve their understanding not only of the threat, but also of what, why, where, and how they are being targeted.
  4. ICS (Industrial Control Systems) pushed to the Breaking Point – Intrusions into systems that control operations in the chemical, electrical, water, and transport sectors have increased 17-fold over the last three years. The advent of connected and automated sensors with the IoT aggressively exacerbates these issues. The growth in the use of cyber technology for terrorism, hacktivists and other actors, combined with the weakness of ICS security generally, combined with the potential impact of bringing down a power grid or water treatment plant (hello, California), makes the critical breach of an ICS in 2016 extremely concerning and increasingly likely.
  5. Shake-out of the Security Industry – Our industry has been awash in venture capital and as a result, foolish investments have been made in strategies and technologies that are little more than snake oil. As organizations’ security programs continue to mature, they are learning that claims of being able to prevent advanced threat breaches are nothing more than fantasy. Expect to see a shake-out in the security industry as organizations maturing understanding of advanced threats increasingly drives their security investment decisions.

This is a guest contribution by RSA’s Amit Yoran. RSA is a division of EMC Corporation

DON'T MISS OUT: The only English-language Colombia news that's strictly business, markets, & investment!
Join global executives & investors by subscribing to our FREE weekly updates
I agree to have my personal information transferred to MailChimp ( more information ) DISCLAIMER: Protección de Datos Personales Artículo 15 de la Constitución Política de Colombia, ley 1581 de 2012 y decreto 1377 de 2013.
We will never spam you or share your email address ¡Nunca Jamás!

Share the news!

  • Facebook
  • Twitter
  • Print
  • WhatsApp
  • LinkedIn
  • Skype

Related

Share your thoughts:

comments

About the Author
As President, Amit Yoran is responsible for developing RSA’s strategic vision and operational execution across the business. Previously, he served as Senior Vice President of Products, where he provided leadership for RSA’s product development and product management organizations. Yoran founded and served as the CEO of NetWitness, the market-leading network forensic product provider, which was acquired by RSA in 2011. In 2003 and 2004, he served as founding director of the US-CERT program. Prior to that role, Yoran was co-founder and CEO of Riptech, which was acquired by Symantec in 2002, and where he subsequently served as Vice President of Worldwide Managed Security Services. Yoran is a graduate of the U.S. Military Academy at West Point and George Washington University.
  • google-share
Previous Story

Latin America To See New Classes Of Cyber Security Threats in 2016: Unisys

Next Story

Colombia’s Investment, Legal, Securities Leaders Optimistic For 2016, But Urge Dilligence

Related Posts

kennedys law
off

Kennedys Law Opens Office in Bogotá to Practice Insurance Law

Posted On August 2, 2016
, By Jared Wade
off

Exclusive Interview: How Rosario, Colombia’s Oldest University Keeps Making An Impact 350 Years After Its Founding

Posted On April 3, 2016
, By Loren Moss
off

RSA Research Finds Americas Financial Services Industry Lacks Cybersecurity Maturity

Posted On June 28, 2015
, By Loren Moss




Search

RECENT

POPULAR

COMMENTS

The World’s 50 Best Restaurants today reveals Leonor Espinosa of Leo, Bogotá, as the 2022 winner of The World’s Best Female Chef Award, sponsored by Nude Glass

Colombian Leonor Espinosa Named "World's Best Female Chef"

Posted On May 18, 2022
Grand Bahamas photo © Loren Moss

Bahamas Seeks Air Connectivity With Colombia

Posted On May 18, 2022
Roberto Kriete, avianca's main shareholder and chairman of the Board of Directors.

Shareholders Of Viva, Avianca & Gol Announce The Creation Of Abra Group To Dominate South American Skies

Posted On May 11, 2022
Colombia’s attorney general charged Russian national Sergein Vagin and six other people

Alleged Russian Spy Charged…With Running A Gambling Mafia

Posted On April 12, 2022

Viva Launches Nonstop Routes To Buenos Aires, Argentina From Medellín & Bogotá, Colombia

Posted On April 12, 2022

Romanian Cybercriminal Mihai Ionut Paunescu Captured In Colombia

Posted On June 29, 2021
Photo montage courtesy EPM

EPM’s Board of Directors Resign En Masse, Creating Crisis For Mayor Daniel Quintero

Posted On August 17, 2020

Court Blocks Colombia’s $370 Million USD Emergency Loan To Bankrupt Avianca Airlines

Posted On September 12, 2020

Deadly Riots & Protests Against Police Brutality Break Out Across Colombia

Posted On September 10, 2020

AVIANCA IS BANKRUPT

Posted On May 10, 2020

[…] damn what she said. She and...

Posted On April 4, 2022

[…] by short sellers seeking to...

Posted On March 22, 2022

[…] no longer travel freely...

Posted On March 8, 2022

[…] Duque’s administration will...

Posted On March 8, 2022

[…] See also: 13 Police Injured In...

Posted On March 3, 2022

Watch This!

Consider Advertising With Us

Click here to visit Expat Group's English site

Subscribe Free

don't forget to include "http://"
* = required field
Your Background / Function








unsubscribe from list

RECENT

POPULAR

COMMENTS

The World’s 50 Best Restaurants today reveals Leonor Espinosa of Leo, Bogotá, as the 2022 winner of The World’s Best Female Chef Award, sponsored by Nude Glass

Colombian Leonor Espinosa Named "World's Best Female Chef"

Posted On May 18, 2022
Grand Bahamas photo © Loren Moss

Bahamas Seeks Air Connectivity With Colombia

Posted On May 18, 2022
Roberto Kriete, avianca's main shareholder and chairman of the Board of Directors.

Shareholders Of Viva, Avianca & Gol Announce The Creation Of Abra Group To Dominate South American Skies

Posted On May 11, 2022

Romanian Cybercriminal Mihai Ionut Paunescu Captured In Colombia

Posted On June 29, 2021
Photo montage courtesy EPM

EPM’s Board of Directors Resign En Masse, Creating Crisis For Mayor Daniel Quintero

Posted On August 17, 2020

Deadly Riots & Protests Against Police Brutality Break Out Across Colombia

Posted On September 10, 2020

[…] damn what she said. She and...

Posted On April 4, 2022

[…] by short sellers seeking to...

Posted On March 22, 2022

[…] no longer travel freely...

Posted On March 8, 2022

Watch This!

Contact Us (Click the image):

Pages

  • About Us
  • Colombia Events, Conferences, Festivals and Important Dates
  • Contact Us
  • main
  • Media Partnerships
  • Privacy Policy
  • Search Results
  • Whatsapp test page
Copyright 2014-2020 Finance Colombia All Rights Reserved. We may earn commissions from qualifying purchases.
Posting....
WhatsApp us
 

Loading Comments...
 

You must be logged in to post a comment.