Tom has more than 23 years of experience, working with Federal security operations teams in both the Civilian and DoD sectors to help them achieve their missions in continuous monitoring, detection and... Read More
Comments
Fidelis Cybersecurity was proud to support and participate in the 11th Annual Billington Cybersecurity Summit last week. As we entered 2020, some critical issues faced Federal cybersecurity stakeholders. These issues include Detection and Response, Zero Trust, Artificial Intelligence and Machine Learning (AI/ML), Emerging Threats and a skills shortage in the Federal cybersecurity workforce (to name a few). These issues were only heightened by the COVID-19 global pandemic.
A common thread throughout these topics discussed at Billington was the impact of the pandemic. But also, how Federal agencies have adjusted and continued to address these issues in “moving beyond the pandemic.”
Many Federal leaders spoke of the need to address cyber workforce and skillset shortages. A recent statistic showed that there are 3.5 million cyber job openings. Additionally, there’s a need for cybersecurity awareness training for the entire Federal workforce. While re-training and awareness are necessary, the don’t adequately scale to address the whole problem.
Fidelis has been doing this for years. We continuously monitor all ports and protocols while enabling enterprises the ability to capture and store metadata cost-effectively. This is done with upwards of 300 attributes per session and made accessible anywhere between 30 and 365 days for retrospective and historical analysis.
This provides a solid foundation for AI/ML and the Automation benefits to eliminate repetitive steps for security teams and free them up for more complex stages of an incident. Zero Trust and digital modernization are being driven by data. Because of that, security teams must be able to pivot to the “who” “what” “where” “when” and “how” of an event.
Adversaries are leveraging automation and the blind spots being created by evolving hybrid infrastructures and the expansive landscape. They do so to take advantage of a “brittle infrastructure” and move laterally throughout the enterprise undetected. These emerging threats increase the importance of both detection and rapid response.
Fidelis is uniquely positioned to help Federal enterprises address these challenges. We focus on detection and response in our platform that is mapped to the MITRE ATT&CK framework. We engineered this so that teams can be simultaneously proactive, protective, reactive, predictive, and retrospective.
Federal security teams must also be able to continuously map and classify assets. This includes IoT, OT, and legacy systems where a fundamental level of security can be applied while digital modernization evolves. Fidelis accomplishes all of this through integration of network detection and response (NDR), Data Loss Prevention (DLP), Deception beyond detection, TLS encryption, and Digital Forensics under a unified platform.
Federal security operations teams that have incorporated Fidelis into their security program are realizing measurable outcomes; including, 1) faster response, 2) identification and control of unknown adversaries that have bypassed all other defense systems, 3) automated threat hunting both real-time and retrospectively, and 4) closing workforce and skillset gaps by eliminating steps in incident response.