Despite the record level of investment in cybersecurity skills and technology, breaches and incidents are higher and higher each year. Spending more hasn’t made us more secure, yet. Majority of this spending is simply table stakes in an ongoing race of innovation against the bad guys. What used to count as proactive security, from patching and software updates to firewall enhancements and routine penetration testing, is no longer sufficient against attackers who are better prepared and more coordinated than ever.
Latest trends
The business reality today is that organisations are tightly interconnected in a complex ecosystem of peer companies, partners, and suppliers, large and small, within and across industries and borders. This new reality also requires a new method of cyber defence, one that enables companies to cooperate on a collective defence. We need behavioural-based detection at scale and across entire industries in order to win against a modern, collaborative ecosystem of cyber threats.
Motivations of attackers are very diverse. We are seeing more and more targeted attacks against specific sectors and organisations to steal IP with very persistent and advanced techniques to penetrate IT Networks. In some extreme cases, attackers are trying to destroy infrastructures and disturb production systems. Political and economic tensions are often their motivation in these particular case. We also see very cost effective and mass distributed attacks on any size and type of organisation, including consumers. The objectives of the attackers are simply to generate money as quickly as possible.
The need for Collective Defence
Cyber threats today require a new strategy to cyber defences, one that leverages a collective approach to enable companies large and small to work together in defence. Doing so requires new solutions that are tailored to and within reach of companies of all sizes so all can participate in defensive economies of scale. It is a different approach to cybersecurity, but it is a necessary and worthwhile effort, one that will protect your own company and help secure your industry and that of the nation.
By banding together and working together with peers, companies are better able to pool and optimise resources so they can achieve defensive economies of scale that allow them to keep up with and counteract cyber attackers.
The advantages gained from a managed security service are tried and tested and they address many of the cost optimisation, shortage of skill and resource challenges that enterprises face today. Collective Defence can definitely be a strategy that managed security service providers, MSSPs, are in a great position to adopt. Adding to their signature-based detection methods a more proactive and behavioural-based detection capability that identifies threats targeting industries and companies in their portfolio, MSSPs will be better equipped to counter unknown threats and future attacks.
This allows companies to identify stealthy attackers earlier in the attack cycle when many of their methods fall below the threshold of detection at a single company by allowing companies to aggregate data and run higher-order analysis across industry data.
Attackers are all collaborating, sharing information and launching their attacks. Organisation needs to have the ability to leverage resources, people, technology and Intelligence, across companies, sectors and nations. The solution implemented should be flexible in deployment in order scale the Network Size and see all raw data in real time with the ability to support On prem or cloud. It requires also very advanced Detection Capabilities to detect the known and most importantly the unknown threats. Partnering with nation-state level of expertise in cybersecurity is a major criteria for success.
The collective defence vision and solution that IronNet provides, are easy to demonstrate and implement. IronNet provides all necessary expertise to its customers and its channel partners to assure success on the long term.
The traditional security reseller is already receiving questions from his existing customers about cyber collaboration and how to address this challenge. The most suitable partners to position and provide IronNet solutions, are partners with a real understanding of today’s security challenge and that have the ambition to advice their customers to shift from traditional silo approach to collective defence.
A partner with advanced experiences on implementing and managing a security operation center will be more prepared and ready to deliver faster to the market the IronNet collective defence solution. Collective defence in cybersecurity via shared network traffic analysis happens in the most mission-critical of settings. But consider a different kind of traffic analysis, street traffic analysis, as an example of the same crowdsourcing mindset that inspires IronDome’s approach.
IronNet is building the Waze equivalent for cybersecurity. We are working hard to connect companies across the information superhighway to improve visibility, identify threats, and improve cybersecurity decisions in real-time to actual cybersecurity conditions.