Security Needs to Shift to Resilience
According to security expert Matin Stemplinger, resilience means accepting that defences will be broken and attempting to prepare to reduce the damage to the business.
Speaking at the Security Congress Europe, the Middle East and Africa 2015 in Munich, Stemplinger said: "Resilience means accepting that defences will be broken and preparing to reduce the impact on the business."
He believes resilience is not about technology but is instead a continuous process that requires information security professionals to understand the real business risks and adapt the security accordingly.
He added: "The first step is defining the risks by identifying the organisation's crown jewels and what would be the most devastating kinds of attack on them.
"Start there and then expand both in scope and depth, reviewing regularly to align with business continuity."
In order to improve resilience Stemplinger said the focus has to be on reducing the impact of the breach which requires
segmentation of networks.
He said: "Segmentation is fairly common in datacentres, but that is not the case when it comes to office networks, despite being essential to contain attacks."
Stemplinger believes adopting a "zero trust" approach is a key principle to factor in, meaning that no device on the network should be trusted and everything should be logged and monitored.
He believes building a response capability is also very important and information security professionals should seek to anticipate attacks by improving their situational awareness.
Return to internet news headlines
View Internet News Archive