Future of Cyber Security

Cyber security leaders need to be empowered addressing below GenAI impacts

1. What if my security team want to leverage GenAI use-cases?
2. What if my business team want to evaluate, experiment, perform POCs around GenAI apps?
3. What if my business team continue to consume the GenAI products?
4. What if my organizations targeted by AI attacker?

Cybercriminals are using Docker containers to distribute malware due to its scale of operations. Get ready to compose security assessment on their containers comprising 4C’s (Code, Container, Cluster and Cloud Infra). Digital business require lean team with talented expertise to conduct assessment services. 

Ensuring that existing vulnerability management program works well to enhance the operational maturity require assessment. Leverage external professionals to conduct assessments based on defined framework across building blocks and act to mature your vulnerability management program. Listen to this podcast for more details

With increased adoption to digital by business and technology advancements consumed by bad actors makes threat hunting a ‘must to have’ program. Cyber threat intelligence enables security analysts with data enrichment, however good programming and coding skills helps threat hunter to uncover the unknowns.

Organizational business continuity program should mandate CISO or CIO to have TTX periodically to rehearse the cyber security incident response plans. The level of participation and greater audience with variety of expertise to combat cyber security incidents quantify the TTX success. 

Microsoft Endpoint DLP helps organizations to adopt data protection strategies with most common use cases such as protecting sensitive data based on regulatory compliance, prevent unintentional or accidental exposure of critical data and restricting unwanted activities on windows devices.  

Enterprise today face data protection challenges to secure sensitive information across its life cycle and exploring solutions. Microsoft Azure Information Protection has been widely purchased by many customers, but struggling to find ways to get started and require assistance in adopting best practices. Let's explore it in this podcast.

Cloud business leaders prefers multi cloud deployment strategies either within the region or across regions to have cost effective solution. IT security managers require security event management solutions prefers to have deployed on the cloud environment or either prefer SaaS offerings

IBM QRadar and Splunk are the leading vendors in the market today offers wide range of SIEM use-cases. It require design and cost considerations to make it effective and fit for business purpose. 

Microsoft clients with E5 license can evaluate the below 16 functional domains to utilize the security use-cases and replace security vendors. However, if customer’s have unique requirements that are achievable only with marketplace security products should continue to leverage other security solutions.

SASE (Security access service edge) concept is to have all the functional components of network and security required for enterprise available on cloud based services that are globally accessible for the digital business

Every organization will have opportunity to learn from their security incidents. While performing root cause analysis, often organization fail to analyze deeper to figure-out the human element associated with it. 

IT security leaders are looking for cost effective security programs that enhance their cyber security immune systems. Listen to this podcast to learn those five key ideas. 

Cyber risk is business risk – CISO representation at board level is important to provide business solutions. Hence in the year 2020 – CISO’s should redefine the corporate security strategy.

Increased adoption of digital make all generations to prey to social media platforms. With increase fake news or misinformation and lack of knowledge to perform fact check, mostly kids and adults are mentally affected and targeted for cyber bulling and online harassment. 

In mobile first market, organizations need to develop mobile applications that has self defensing capabilities. As the in-app protection technologies are new - DevOps leaders should invest time to learn and adopt implementing it for their high value applications. Listen to the self defensing capabilities here. 

Maze is a file encrypting virus and also a successor to ChaCha. Organizations need to have protection strategies from being victim of similar cyber attacks. Listen to this podcast for more details

Organizations need to define zero trust strategy to enforce the security controls across the ‘defense in depth’ layers. Security in continuous process and require constant learning as the attacks are sophisticated and targeted. Adopting to Zero Trust principles keep the business safe from any breaches.

The Personal data protection bill, 2019 mandates to implement cyber security controls such as de-identification, encryption, protect integrity, prevent misuse, unauthorized access to modify, disclose or destruct of personal data. The bill has obligations to take prompt and appropriate action in response to a data security breach. It shall be liable to a penalty which may extend to five crore rupees or two per cent. of its total worldwide turnover of the preceding financial year, whichever is higher. 

Every business is unique in its own way and adopting cyber security services that are ‘tailor-made’ with two-way communications will help address risks and challenges to safe-guard from data breaches.

Enterprise prefer to outsource their IT security and believes that its cyber security operations are managed well. But - how well you understood their service descriptions. Listen to this episode to learn certain basic that are required for this digital business needs?

Data residency, compliance issues, and the need for visibility and monitoring of data continue to drive organizations to adopt data loss prevention capabilities. Enterprise can't protect threats, if they don't see it. Listen this podcast

Experience is all about sense of feel, taste, music to ears, seeing and believing. Listen to this podcast that helps 'How to make the SOC visit as experience to bring the ‘wow’ factor'. 

Organizations need to have futuristic security strategy programs to enable digital workplace safe from cyber breaches. Business can’t expect that GenZ will only use emails channels for exchanging messages. They shall use social media platforms. Hence digital workplace security program should seamlessly identify, detect, protect and respond to cyber threats and allowing employees to securely work anytime, from anywhere

Machine first security delivery model require clear understanding of automation use cases and well document incident response playbooks. Organizations today finding ways and means to utilize both humans and machines in cyber security operations

Active cyber defense strategies unless do not violate regulation and law of the land are considered now as appropriate direct action to counter threats.  Today’s security business function should have everything it needs to mount a competent defense of the ever-changing enterprise landscape 

Organization continue to have ageing vulnerabilities remained unpatched and its serious problem that need solution that are effective to reduce the time that vulnerability discovered and patched.  Listen to the four key strategic recommendations.

Organization need to detect the threat quickly and do not want to waste time investigating false negative alerts, thereby remediate the vulnerabilities and mitigating the attack vector more quickly.  There are many cyber threat intelligence service providers in the market, and the number appears to be growing. Not all services that are marketed as threat intelligence actually provide that type of content, so it is important to understand what problem customers are trying to solve 

 Perimeter-based security approaches are no longer sufficient. The starting point for devising a micro-segmentation is discovering and identifying all the application flows within the data center. Listen to this podcast to understand it better. 

Studies have indicated that most security breaches in the cloud (such as AWS) are due to settings errors, which a data breach costing an average of $6.5M, according to Cloudnosys.  Amazon has two primary areas of focus for cybersecurity and data protection: Amazon Web Services (AWS) and smart home security. 

After several cyber security and privacy issues reported against Facebook, its time to re-look their process, people and technology. Facebook began revamping its privacy policy, has restricted data access to various APIs, implemented a more stringent review process, and announced the hiring of an estimated 10,000 new employees who will focus on combating data breaches and monitoring content. 

Internet connectivity is a two-way street. With these devices becoming a gateway to our homes, workplaces, and sensitive data, they also become targets for attacks. Lets learn what industry is doing with it and what recommendations are to be kept in mind while building security strategies. 

Most organizations operate with limited financial and resource constraints, they need to prioritize security activities to maximize business benefits.  When communicating to board on security financial reporting, its important to provide visibility beyond security operations and infrastructure. The measurements, metrics and reporting are vital in any security business. Read more in my blog - https://rasoolirfan.com/2019/04/04/importance-of-security-operational-metrics-and-reports/

Backstory will become the backbone of many managed security service providers. In this episode, lets learn about Chronicle (Google Alphabet's project X moon shot) contribution to cyber security. Read my blog for more details https://rasoolirfan.com/2019/03/26/revolutionary-threat-hunting-platform-for-massive-data/ 

MITRE evaluates cybersecurity products using an open methodology based on our ATT&CK™ framework. In this podcast, lets get some basic knowledge on MITRE's contribution to industry with ATT&CK framework.