We recently interviewed Anthony Edwards, Director of Security Operations for Hilltop Holdings, who shared problem-solving insights for our evolving security landscape. Read on for what he had to say:
Q: What makes securing your sector unique?
A: The financial services sector is constantly targeted for malicious attacks. There’s nothing really more difficult about securing an organization like that—you just have to focus on different types of information, different regulatory compliance requirements. Our ultimate goal is to protect not only the organization that we work for, but also our customers and our customer data.
Q: Can you tell us about your security program today?
A: We definitely take a layered approach. We’re currently using an array of different technologies from a security perspective. Malware sandboxing. Both NetFlow or flow-based sandboxing, as well as file-based. We’ve deployed several different utilities. We’re using the Rapid7 InsightIDR for our log collection and SIEM, but we also subscribe to the MDR service for incident response. We also use InsightConnect in order to automate certain kinds of processes or functions for response to certain types of threats. Right now, we’ve automated the phishing email triage process using InsightConnect. We also use InsightVM for our vulnerability management functions.
Q: When did you start adopting Rapid7 products?
A: We started with InsightVM (Nexpose at the time). About a year after I took over security operations, ..
Support the originator by clicking the read the rest link below.
