Cybersecurity Blog: The Cyber Scene is evolving, are you?

Successful integration, motivated leaders, and driven employees propel Leidos to the #1 fastest growing cybersecurity consulting company


Coming in at the No. 1 spot with an astronomical growth rate of 82.1 percent year over year was Leidos. The company reported cybersecurity consulting revenues of $285 million in 2016, up from $157 million the year before. – CRN.com

Read more

The word “prevention” is broadly applied in cybersecurity. It can refer to the responsibility of a technology stack to block, an analyst team to detect, or a security team to respond. Historically security prevention budgets have been dedicated to point solutions installed to keep the bad guys out. As organizations mature their cybersecurity programs they are looking for ways to leverage intel gained at the detection and response stages to enhance prevention efforts across the board.

According to RSA sponsored research, the trend in security budget spend has been moving away from a historic split of 80% prevention, 15% detection and 5% response to a more equal allocation of funds – 33% for each initiative.

Read more

One of the most compelling questions asked today by security operations is, “Can we enable our analysts to make security decisions that will have a positive impact on the overall security posture of our organization?” The short answer is, “Yes. But it’s not easy.”

Read more

Most security vendors these days, including Lockheed Martin, are touting new capabilities for automatically detecting advanced threats through the use of data analytics and automation. In business, “automation” is often synonymous with downsizing. In this case, however, we would argue the implementation of automation tools is not about downsizing staff but rather empowering cyber analysts to do more, good work. However, while automating some of the more mundane and menial tasks of an analyst may free up cycles, it is not a cure-all solution that eliminates the need for human intelligence.

Read more

Our team has been actively involved in defending some of the most attacked organizations in the world. Having a front row seat in the fight against advanced persistent threats (APTs) has informed how I think about defense and intelligence. Last month I teamed up with our partners at Cybereason to discuss:

    • The most pressing challenges your company faces when fighting APTs:
      • Excessive false positives
      • Lack of threat context
      • Poor endpoint visibility
    • Four steps you can take to combat APTs in your organization, including automating threat detection and implementing behavioral analysis
    • How to empower your security team in the fight against APTs by adopting automatic threat detection, eliminating alert fatigue and using endpoint data to reveal full attacks

Read more

I give myself good advice, but I seldom follow it.”

 

– Alice in Wonderland

In the threat intelligence space, vendors market threat feeds as a source of “good advice”. But are subscription based threat feeds truly providing actionable intelligence? A challenge for any SOC operations manager is to determine if their threat feed is really creating value or just a barage of alerts that send their analyst teams “down a rabbit hole”.

Read more