Implementing and managing security is not easy for any organization. We recently had the opportunity to (virtually) sit down with key analysts from IDC including Martha Vazquez, senior research analyst, IDC Security Services, Craig Robinson, program director, IDC Security Services, and Philip Harris, research director, risk, advisory, management and privacy. These analysts are on the front lines of cybersecurity research, advising organizations on security strategy. Our Q&A session covered topics like, “Do organizations still view MDR as just advanced EDR?”, “What are the top priorities for the modern CISO today?” and “What does it mean to be a resilient organization?”
All about Virtualization and Cloud Security | Recent Articles:
On June 22nd, MITRE released a new framework called D3FEND to complement the industry-recognized ATT&CK matrix. The new framework, sponsored by the NSA, aims to create a foundation for identifying components and capabilities of security defenses. MITRE is not a private non-profit organization; it is a federal research and development organization.
- Ransomware attacks are on the rise and costing companies millions of dollars, and enterprises need to take steps to protect themselves from these threats.
- Best practices for defending against ransomware include strengthening the overall security posture with stronger access controls such as strong endpoint protection, two-factor authentication, employee training, and data backups.
Ransomware is hitting organizations hard, and there seems to be no end in sight for these damaging attacks on enterprises of all sizes and across industry verticals. With major ransomware news breaking almost daily, enterprises are beginning to take the threat seriously due to the risk of financial losses, business downtime, loss of customers, bad publicity, and other unpleasant results.
The ability to work from home seems to have seeped into people's consciousness like it's something normal and expected. Employees now ask if they can work remotely when applying for a new job, and companies have to take this into consideration. But these expectations are changing the cybersecurity landscape and force organizations to adapt to a new paradigm in which employees are no longer entirely under the protective umbrella of the corporation. The responsibility for employees' cybersecurity is no longer clear-cut, and new definitions are needed.
- IT security teams face the challenge of a complex, evolving threat landscape
- Threats are increasing in sophistication and the attack surface is expected to grow
- Security tipping point is determined by gaps in time, skills, efficiency and outcomes
- EDR and MDR represents two viable paths you can take to achieve solid security defenses