Today's Cybersecurity 'Can't Be Successful With A Static Solution'
Concerns for data protection within cyberspace are rising, especially as the cost of security spending increases while the amount of data loss incidents continues to grow. Traditional approaches to cybersecurity are failing, and so various data protections firms are adapting their strategies to counter the malicious attacks.
New measures in cybersecurity data protection must be innovative and adaptive, which is why we spoke with Guy Filippelli, the Vice President of User and Data Security at Forcepoint. Filippelli discussed with us the work that Forcepoint is doing in data protection – namely a measure of protection that adapts to the behavior of internal employees. Forcepoint’s ‘Risk-Adaptive Protection’ strategy uses behavior-analytics to identify an organization’s strongest and weakest points in their cybersecurity based on their employees’ online routine in the workplace.
Christopher P. Skroupa: Security spending is expected to reach $120 billion dollars by 2021, yet there continues to be more and more data loss events making headlines. Why are traditional cybersecurity approaches failing?
Guy Filippelli: It comes down to the reality that adversaries are increasing their capabilities, and in many ways democratizing their capabilities. So, even though companies are spending more on security, the threat has been escalating faster than traditional protection can evolve to address. Essentially the cybersecurity industry is broken. And, organizations need to fundamentally rethink how they address cybersecurity for today’s modern threats. It’s time to start looking at the people in your organization, rather than just looking at security as a problem of how to protect your perimeter.
Skroupa: What is the concept behind Risk-Adaptive Protection?
Filippelli: Addressing today’s threat landscape can’t be successful with a static solution. Risk-Adaptive Protection enables security to fluctuate based on the threat environment. It’s very agnostic compared to how we put security in at the airport or at a sports stadium; where, depending on the threats that we may face, we may see a larger security presence or a smaller security presence. In the cyber-world, a compliance driven operation has been dictating security measures for too long – we need to stop this. What we [ForcePoint] have found is that we – as collective organizations – need to move to adopt an adaptive policy based on risk.
For example, employee A may be more of a risk than employee B, and so employee B should have more permission than his or her colleague to do things that require a cyber operation. We believe having that ability of dynamic scoring is really going to change cybersecurity because you’re going to build much more closely in, where you can start to operate to lessen security for those who are lower risk, and raise security for those who that are high risk in the organization.
via Forbes - Entrepreneurs https://ift.tt/dTEDZf
April 30, 2018 at 10:44AM