Time for a more intelligent approach to cyber security
The channel needs to start offering solutions that apply a layer of intelligence and context to security, argues SBL's Scott Cattaneo
For too long, vendors of cyber security software have used shock tactics to frighten the market into purchasing their products. There is now a certain amount of backlash from businesses for two reasons. They are becoming hardened to the apocalyptic predictions, and the solutions that they purchased haven't necessarily provided the protection promised. In many cases the reason that the solution didn't perform as expected is because simply buying the software isn't enough.
You need to work at it, maintain your processes and continuously monitor your defences. Cyber security is a moving target and this can take a lot of resource.
However, we are now starting to see a new psychological approach to security that applies intelligence to security solutions. The emphasis should be less on purely looking to block stuff and stop things from happening. Taking this old approach can actually help attackers, for example DDoS attacks aim to shut down businesses by making the perimeter security products simply act as designed, which is to close down. Organisations should be looking at solutions that enable them to streamline and automate their security processes, releasing staff to more proactive and strategically valuable work.
As well as more intelligent security software, this new approach calls for the security officer to become a trusted advisor rather than a policeman, and for the security industry in general and the channel in particular, to think about the benefits that good security can bring. This is important because we are starting to see business managers increasingly involved in the purchasing decisions; they are not interested in the technology, just the benefits to the business.
When it comes to security, the channel needs to provide a consultative service, rather than insisting on complicated security procedures that stand in the way of business. They should aim to work with the line of business to help to identify risks, and look for the best way to manage and mitigate those risks. By working with the business they ensure that people understand how security risks apply to them personally leading to better buy in from the end users.
There is now a new generation of products that are able to add context to security. A prime example of this is vulnerability intelligence that can be applied to patch management solutions, so that the system highlights the most critical vulnerabilities for that particular organisation. This not only saves time, but also ensures that the IT department is able to focus precious resources on the areas that will make the most impact. This is not a ‘me too' type product that is usually selected on price, but a premium service that, in terms of saving time and resource and doing a better job, can actually be viewed as an investment - it provides tangible benefits to the business.
There is no doubt that cyber security is moving up the business agenda, but most organisations can't afford the escalating costs associated with getting into an arms race to mitigate risks from all potential attackers. The channel needs to be ready with solutions that apply a layer of intelligence and context to security, that in doing so provide a better solution, that uses far less resource; solutions that in providing better security also support more agile and flexible ways of working. If we can provide this through the channel, security will certainly earn the respect and the support of business.
Scott Cattaneo is commercial manager at SBL