Defending against Advanced Threats in an Ever-evolving Threat Landscape
While data exfiltration, malware infections, unmanaged BYOD and complex IT/IS environments remain high on the list of concerns, information security leaders point to people as being the greatest security threat vector. No matter how many tools you throw into the environment, and no matter how many times you monitor something, it’s just the one human mistake that will cause the greatest trouble.
Ways to mitigate the potential risk resulting from human error include:
- Monitor the flow of transactions and apply better analytics. Focus on behaviors rather than patterns associated with signatures of malware.
- Opt for centralized management of content instead of a decentralized model. Move content away from the endpoints and centralize content into known good locations.
- Reconsider sandboxing technologies because new capabilities have been introduced that make the solutions more efficient.
- Perform static analysis on unknown content to identify breach potential
- Spend time with C-level staff to mature their understanding of the implications of risk to their company and why they should be more engaged in actively supporting the protection of IP and other information.
|