Security has to evolve to combat the increase in attacks

Own the vulnerability; don’t blame the threat, is Gartner’s advice. Fingers have been pointed at China and Russia (amongst others) for some of the recent cyber attacks – but the techniques used are not new.

In Gartner’s last report – Strategies for Dealing with Advanced Targeted Threats – it is clear that security has to evolve to combat the increase in these types of attacks.

“The reality is that the most important issues are the vulnerabilities and the techniques used to exploit them, not the country that appears to be the source of the attack,” said John Pescatore, vice president and distinguished analyst at Gartner.

Simple, signature-dependent security approaches are not the answer to the level of tailoring and targeting that the new threats present.

Denial of service, theft of information – these are techniques that cyber criminals have worked on for years – and Gartner are clear in their message.

“Targeted attacks are penetrating standard levels of security controls and causing significant business damage to organisations that do not evolve their security controls,” said Pescatore.

The message is to reduce vulnerabilities, increase monitoring capabilities, and react quickly to evolving threats – resulting in everyone from teenagers to state-backed attackers hitting a brick wall.

“The use of specialised threat detection, network forensics and situational awareness technologies can be very effective…but require high levels of skilled resources to be effective.” Pescatore added.

A ‘lean-forward’ approach is needed towards security where the business is constantly looking beyond the standard level of security, and active threats are continuously being monitored.

However, investment is the key to the lean-forward processes, but also a company has to be able to take action if a breach is discovered.

SHARETweet about this on TwitterShare on LinkedInShare on FacebookShare on Google+Pin on PinterestDigg thisShare on RedditShare on TumblrShare on StumbleUponEmail this to someone

Chris Baker is the Global Sales and Marketing Director responsible for the expansion of Calsoft Enterprise Solutions internationally. Formerly co-owner of acquired business, Inatech, Chris has been responsible for developing and promoting the company’s position as a specialist in Oracle solutions within the global IT industry. Chris co-founded Inatech in November 2002 merging with Calsoft in 2008. In a career spanning 23 years, Chris has held influential positions at Accenture, Easams, and Marconi. He was a Member of the Oracle UK Consulting Board during his time at Oracle Corporation UK, where he spent 15 years. Chris has a Higher National Diploma in Computing Studies from Farnborough College with distinction.