Cybersecurity Blog: The Cyber Scene is evolving, are you?

With increased public awareness of cyber attacks and corporate America’s growing concern over cybersecurity, board members are asking more informed, tougher questions of their security teams. Many teams still focus on reporting activity such as number of hits detected and tickets closed—information that does not accurately reflect the team’s success or help inform investments.

At a recent Gartner Summit, Rich Mahler, Director of Leidos Commercial Cyber Services (formerly Lockheed Martin), discusses why teams need to stop measuring effort and focus on what matters—wins against real threats. One way to do this is by framing metrics in the context of the Cyber Kill Chain®. The framework enables teams to accurately identify which of their existing tools are most effective at detecting and blocking threats and where there are gaps/weaknesses—information that informs cybersecurity investments.

Read more

Need to improve your company’s cybersecurity? A myriad of vendors and thought leaders are ready to sell their products or ideas to do just that. What you don’t usually hear is how some of these technologies or practices might not be as effective as you’re led to believe. Working in systems engineering, as well as having run red team and blue team assessments for some of the world’s largest companies, I’ve observed four common practices that contribute to sophisticated corporations being lulled into a false sense of cybersecurity.

Read more

Live security evaluations are essential to the good security health of an organization.  An evaluation performed by a skilled internal organization—or a qualified third party—allows an organization to objectively test its security measures and defensive capabilities. This not only helps evaluate the effectiveness of existing security controls which may require remediation, it also identifies blind spots that represent pockets of previously-unknown risks to the organization.

Read more

Traveling long distances can get monotonous; we drive and we drive, making our way through towns and across rivers, and sometimes stalling in traffic. But we measure the miles we travel as we move towards our destination. We keep moving forward and change routes if needed, making the most of the opportunities and challenges while trying to stay on time and within our budget.

Read more