Press

Back to the Office: Managing the Risks

As organizations that shifted to a remote workforce consider allowing some workers to return to the office environment, CISOs must reassess their security infrastructures, says Chris Kubic of Fidelis Cybersecurity, who formerly was CISO at the National Security Agency.

The impact of Covid-19 on the way IT services are delivered

Covid-19 hasn’t driven the need for organisational changes with respect to IT and security job functions and roles but it has certainly changed the way IT services are delivered. Many companies have reassessed their level of IT and security staffing looking for efficiencies to offset reduced revenue, have had to quickly deploy and expand remote access and endpoint security solutions to support work at home employees, and have accelerated their migration to cloud-based services, for example, digital transformation.

Winning the Cyber Battle

Data security is still the number one IT concern for businesses worldwide. A research carried out by ThoughtWorks in 2019 revealed that 33 percent of UK business leaders said that ‘data safety and cyber risk’ was a bigger concern than the challenges of Brexit. Roll on six months and those concerns have increased exponentially as millions of people are now working from home due to the coronavirus pandemic. The story is the same for businesses in many countries across the globe and to address this, CIOs and CDOs are consistently ‘adding’ bolt-on security measures.

Deploying Deception in the Enterprise Network

The goal is to have a deception layer that blends into your current environment and adapts itself as the real network changes. The concept of honey pots and deception in IT security has been around for about two decades. The idea is to place a fake asset in your network and then wait for attackers to interact with it. No one is supposed to know about this fake asset, so any access to it is a high-fidelity alert. This is a great idea in theory, but like the saying goes, the devil is in the details. In practice, there are drawbacks that made honey pot deployment not worth the effort.

AI-powered cyberattacks force change to network security

Companies now face sophisticated enemies using AI and machine learning tools for their attacks. It’s a world of new dangers for those defending network systems and data.

Automating analysis and response is a major step in the fight against network threats like AI-powered cyberattacks. Companies also need to automate their identity and access framework, adopting so-called zero-trust principles, said Chris Kubic, CISO for Fidelis Cybersecurity, a provider of security orchestration, automation and response services.

The State of Network Traffic Analysis

Does your security team have the network traffic visibility tools you need to defend against attackers? Weigh in to Fidelis’ 2020 threat detection and response survey and find out.

Modern organizations have seen a massive expansion of their cyber terrain with the integration of business systems, information technology, and operational technology that is fundamentally transforming the effectiveness and efficiencies of business operations.