Turning Passive Defence into Active Defence: Building the ultimate threat response team
For thousands of years, no nation has mastered the art of defence without first understanding how their adversary behaves. Over the last decade, organisations managing cybersecurity have been defending their information assets based on what they’ve learned from the past, but are ill-prepared when their adversaries evolve and completely circumvent their controls.
Organisations should consider the benefits of forming an elite cybersecurity task force to address todays’ attacks.
The threats faced by organisations today are more challenging than ever. Attackers are getting smarter, stealthier and have the patience to probe for vulnerabilities over a long period of time. Risk assessments, compliance checks and penetration tests have been rigorously adopted by many organisations, yet these activities do little to prevent the organisations’ data from being compromised. The controls modelled based on past adversarial behaviour, do not match the modern attackers’ tactics and techniques. Pre-emptive discovery of an attacker’s activities is the missing piece in the modern cybersecurity landscape, and can only be improved through a deep understanding of how adversaries behave today. To strengthen cybersecurity, there is a need to shift focus from prevention to detection, and organisations should consider the benefits of forming an elite task force to provide the missing context around many of today’s attacks.