Welcome to 2020! It’s the “Year of the Rat” according to Chinese zodiac. It’s an Olympics year, with the Summer Games to be held in Tokyo. It’s a presidential election year in the United States. And for security professionals, it’s another year of playing catch up to the bad guys. Given that 20/20 is the recognized bar for clarity of vision, I’d like to suggest we make it the year for visibility and understanding of threats.
Security professionals know that you can’t protect against what you cannot see. But it isn’t just a matter of seeing, it’s about clarity which comes from understanding. Organizations can see the threats they face through logs and alerts, but that doesn’t mean they have clarity. They need context to understand the who, what, where, when, why and how. Threat intelligence can help; however, the challenge for companies is they have multiple data feeds, some from commercial sources, some open source, some industry and some from their existing security vendors – each in a different format. On top of that, each point product within their layers of defense has its own intelligence. All that data is great, but without some way to bring clarity it can look more like blurry lines on an eye chart.
Most of us don’t have 20/20 vision naturally. So, we put on our glasses or contact lenses and those blurry lines come into focus. Thankfully, as a security professional you also have several corrective measures available so you can efficiently and effectively make sense of massive volumes of data, understand what to work on next and know the right actions to take.
It starts with a way to collect and manage all that data. Havi ..
Support the originator by clicking the read the rest link below.
