Few Take-Aways From The Russian Hacking Incident
What Is The Lesson Learned From The Russian Hacking And For Security Program Development?
There are lots of conversations about whether we should do more investigations associated with all of the attacks that are occurring constantly in our world. When looking at this from the perspective of what matters to the common organization, the key is this: You need to understand two things.
1. If an attack occurs on your organization, would you have the ability to adequately prevent or detect it?
One of the big reasons the breach numbers are increasing in organizations is because organizations that are being attacked have limited implemented detective safeguards that can tell them exactly how much exposure they have had. In these situations, it is standard practice to now report what the full potential data loss could have been, even if that is not the actual scope.
Ensure that you first understand what security means in your organization and balance your security efforts to implement preventive safeguards in your environment with detective ones.
2. If an attack occurs on someone else, such as another company, do you have enough detective safeguards to demonstrate that you had nothing to do with it?
Maybe Russia has these and have not talked about them. Maybe they don’t and wish they did. In the organizational context, if you are doing business with another organization you need to make sure that you have the ability to know if your company did something that can impact that other company.
For example, if you have a direct business to business connection with another organization, you need to ensure that you can detect if someone used that connection to attack your partner. This way, if that other company comes back to you, you can prove it was not from you.
Implementing these considerations is often not difficult, but does take some planning and thinking on the front end to get right. This is why we believe 2017 is the year of Security Program development. The best place to start is on your projects and relationships with business partners, or anywhere that your organization accesses, transfers or stores information of another organization on their behalf.
Need information on Security Program Development? Contact one of Information Security Experts.