dcsimg

Don't Let the IT Security Paradigm Shift Leave You Stranded

  • Don't Let the IT Security Paradigm Shift Leave You Stranded-

    Reporting and Metrics

    Security reporting is an area that has largely been compliance driven. A new security paradigm requires changes to the metrics and reports you focus on. When adding new capabilities in this area, ask if this will help you answer questions in the boardroom. Does the new reporting enhance your understanding of advanced attacks in your organization? Does it provide information on how you are doing against your peers?

    Some of the key things to look for are existing and emerging attacks and trends over time and against industry averages — when there are shifts in trends, root causes for those, the time it takes to discover threats from when they first penetrated your organization, the time to containment and remediation from first discovery and trends as they relate to new investments in these areas.

1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12

Don't Let the IT Security Paradigm Shift Leave You Stranded

  • 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12
  • Don't Let the IT Security Paradigm Shift Leave You Stranded-10

    Reporting and Metrics

    Security reporting is an area that has largely been compliance driven. A new security paradigm requires changes to the metrics and reports you focus on. When adding new capabilities in this area, ask if this will help you answer questions in the boardroom. Does the new reporting enhance your understanding of advanced attacks in your organization? Does it provide information on how you are doing against your peers?

    Some of the key things to look for are existing and emerging attacks and trends over time and against industry averages — when there are shifts in trends, root causes for those, the time it takes to discover threats from when they first penetrated your organization, the time to containment and remediation from first discovery and trends as they relate to new investments in these areas.

Security is a hot topic today. Only a few years ago, security was on the back burner of most IT departments, seen as a necessary evil with few executives ever exposed to it. With the recent spate of high-profile attacks and ensuing losses, IT security is now viewed as the difference between an organization's ability to carry out its mission and going out of business. This is why security is a topic frequently appearing on board meeting agendas and piquing the interest of C-suite executives.

While funding and awareness have increased, it is unclear if organizations are making investments in keeping up with the evolving security landscape. A lot of the newly available funding and resources have been allocated to the existing funding gaps and "perceived" deficiencies in an organization's security posture. This is why IT security is a $58B market today but organizations are not any safer than they were a few years ago. In this slideshow, Shel Sharma, marketing manager at security startup Cyphort, discusses the evolution in the security landscape and how to align new security budgets and resources with this new paradigm vs. investing in more of the same old security.