- by Jamescon, Editor
- 8/11/2016 10:36:05 AM
@Antal. Great point about the 80.5 days between the time of an intrusion and discovery and possible remediation. It may be easy to look at that as just a number sitting on a computer that we should do something about. However, I have become convinced that the only way we are going to address computer security and take meaningful action on it is to view it in non-computer terms.
Security analytics are a good start, giving us the tools to detect and take action. However tools won't help until we change our mindset. We might be pleased if we can lower that 80.5 day statistic to 50 or 25 days. But that isn't good enough.
We need to supplement tools such as security analytics (and invest in those tools and experts to work with them) with that new mindset. We have to take hacking out of the realm of computing and view it as criminal activity. We wouldn't want a criminal having access at will to our homes for 80.5 days (or 50 or 25). We still view hackers as anything from "just kids" to actual "heroes" (if they steal data that helps our political or business mission).
If the image of a burglar doesn't inspire people to get serious about security, maybe an analogy to personal health will work. Imagine being satisfied that we allow a virus, a tumor, or a bacterial infection to live in our bodies for 25 or 50, instead of 80 days. In reality we tell our doctors, "Get that thing out of me, now!"
ANALYTICS IN ACTION
INFOGRAPHICSVIEW ALL +
- by James M. Connolly