Conducting cybersecurity in an industry not heavily regulated by the government still comes with its own challenges. We interviewed Tony Hamil, the senior cybersecurity engineer for a commercial real estate development company in Dallas, Texas, to hear firsthand the challenges he and his team face and how they’re managing security. Hamil’s job includes everything from application setup to maintenance to integrations and checking on alerts. As part of a small security team, Hamil and his colleagues have their hands in every area of security.
Below is a recap of our interview:
Q: What is the nature of an IT environment in real estate, and how is it unique?
A: It’s unique in that there aren’t a lot of government regulations, but we have a CEO who is very security-minded, so we adhere to the CIS and NIST standards even though we aren’t mandated by any of them. This is so important to our company because we have a lot of remote sites and users, so it’s our job to keep everyone contained whether they’re working onsite or remotely. For example, we need to ensure that users don’t do things like log in to a malicious Wi-Fi unit and have their account compromised.
Q: What solutions are you using to keep your company secure?
A: We’ve been using Rapid7’s InsightVM and Metasploit products for almost five years now. We also brought in InsightIDR as well as the Managed Detection and Response (MDR) service as our extended SOC team. M ..
Support the originator by clicking the read the rest link below.
