Security: “You need to stay ahead of the curve”

Redactie

10 september 2021

People just use their credit cards and Amazon to deploy services because “IT cannot keep up.” If you are transparent about what you can and cannot do in software development and transformation projects, people are more inclined to align with it, says Rob Huikeshoven, senior sales engineer, Deep Instinct at the CIO Insights virtual conference held earlier this year.

There’s also the security aspect of it: “You have to have security in your DNA as well – on the left hand side of your development cycle,” he asserts. And since Covid, people work more on their mobile phones, so prevention is key. His message boils down to: “Don’t get hacked in the first place.”

But how? “Many companies are investing heavily in IT, and security is part of that. But most of the time it is bolt-on: “Security is added afterwards, it is not part of their DNA.” In the past year, especially CIOs did not want to be hacked. They contracted endpoint protection and response solutions. “But these often just add noise,” says Rob Huikeshoven. Cutting the noise is vital, because, “noise is full of false positives.”

Last year’s threat factor reports signal an increase of almost 450 percent in ransomware: remote working conditions no doubt helped spur this development. Employee experience is key, you need to make sure that you enable everybody to work and that they stay happy. And that means that security solutions should not have a meaningful impact on resources or security scans should not keep people from working. “You need to stay ahead of the game and make sure you don’t get ransomware.”

Gerelateerde artikelen

Kloof tussen cyberweerbaarheid in theorie en praktijk

Kloof tussen cyberweerbaarheid in theorie en praktijk

Er bestaat een kloof tussen de gepercipieerde cyberweerbaarheid van organisaties en de realiteit. Bovendien ontbreekt het bij 70 procent van de organisaties aan voldoende rugdekking op bestuursniveau voor noodzakelijke maatregelen. Hierop duidt onderzoek van Kyndryl en AWS.

NIST standaardiseert kwantumveilige cryptografiemethoden

NIST standaardiseert kwantumveilige cryptografiemethoden

Deze maand heeft het NIST drie kwantumveilige cryptografiemethoden gestandaardiseerd voor wereldwijd gebruik. Kwantumveilige cryptografie, ook wel post-quantum cryptografie (PQC) genoemd, is nodig in een toekomst waarin kwantumcomputing zodanig toegankelijk is dat deze door kwaadwillenden gebruikt kan worden om gangbare versleuteling te ontcijferen.

Rapport: kwart cyberaanvallen gericht op OT-systemen

Rapport: kwart cyberaanvallen gericht op OT-systemen

Ofschoon bedrijven met OT vorderingen maken op het gebied van cybervolwassenheid, hebben ze met een snel groeiende hoeveelheid aanvallen te maken. Bijna een kwart van alle cyberaanvallen is nu op OT-ststemen gericht.