Rashmi Knowles

The UK government identified cyber security as a key area of focus and new investment and in 2011 announced a budget of £650 million to shore up defenses in the UK.  So, after two years let’s examine where it’s been spent?

Here’s some of the good things that have resulted from the investment

-          SOCA took down 36 website domains that sold credit card data – this is probably a very small tip of the iceberg.

-          15,000 fraud websites were suspended

-          GCHQ announced a scheme to help companies deal with cyber attacks and give guidance on response to a compromise

-          8 universities have been given the Academic Centre for Excellence in Cyber Security and Research

-          CISP, the Cyber security Information Sharing Scheme

However, there are areas that need further investment

-          60% of the budget was spent ‘detect and defend’ – We hope that ‘response’ is also a large portion of this investment although it’s not  very clear Continue Reading

Last week Mandiant produced their report entitled ‘Mandiant APT1 report’ you can download a copy here.  The report was covered by media globally and essentially exposes a ring in China responsible for APT attacks.  This in itself should be startling news and there have been many stories pointing the finger at China.

However, on reading the report an interesting statistic about how long APT1 were in organizations stands out. We know from the Verizon Data Breach Report 2012 that breaches lead to compromise Continue Reading

RSA leads the User Authentication market

Late last week, Gartner published the latest version of its Magic Quadrant for User Authentication, which aims to provide end-user organizations with an overview of the key vendors in this market and Continue Reading

Last week Mandiant produced their report entitled ‘Mandiant APT1 report’ you can download a copy here.  The report was covered by media globally and essentially exposes a ring in China responsible for APT attacks.  This in itself should be startling news and there have been many stories pointing the finger at China.

However, on reading the report an interesting statistic about how long APT1 were in organizations stands out. We know from the Verizon Data Breach Report 2012 Continue Reading

Art Coviello at RSA often refers to the skills gap in the number of Cyber security professionals in his keynotes. A UK National Audit Office report out today quotes it could take “up to 20 years to address the skills gap”.

The truth is the number of IT and cyber security professionals in the UK has not increased in line with the growth of the internet and the NAO warns that the UK faced a current and future cyber security skills gap, with “the current pipeline of graduates Continue Reading

Most of us have grown up with a form of authentication – one factor or two factor and it’s become part of our everyday lives from accessing corporate resources to our personal bank accounts.  However, two factor is no longer enough and the cybercriminals are always ahead of the game.

As today’s IT infrastructures become more fragmented across cloud-based applications and mobile devices, enterprise network boundaries are all but disappearing.  At the same time, Continue Reading

Prevent and Predict Attacks – Really!

When it comes to defending our networks we have to be right 100% of the time but a cybercriminal has to be right just once.  We must shift this balance if we are ever going to be in a position to truly protect and defend our networks.  In fact, defence is probably no longer appropriate because it is not enough we need to be in a position to stop the attacks and even predict attacks.  Predict cyber attacks you say? How?  Attend RSA’s Security Summit in London on the 23th April.  Register here

Those of you familiar with the Lockheed Martin Kill Chain methodology will know that ultimately the goal is to analyze persistent intrusions for patterns and trends and then use this data to stop attacks or even predict attacks.  Breaking the chain in one place means that you may have been successful in stopping that one attack however to be truly resilient you really need to break the chain in several places.  How can you do that and what tools would you need? There is an answer…. Continue Reading

When it comes to defending our networks we have to be right 100% of the time but a cybercriminal has to be right just once.  We must shift this balance if we are ever going to be in a position to truly protect and defend our networks.  In fact, defence is probably no longer appropriate because it is not enough we need to be in a position to stop the attacks and even predict attacks.  Predict attacks you say? How? Continue Reading

Must have competencies for the Cloud in 2013

Following on from my last blog ‘Re-enforcing our doors in 2013’  solving all of the issues of disruptive innovations isn’t going to be possible in a year but we must take some strides towards making some of the changes.  The four members of the disruptive family are Cloud computing, social media, big data and Mobile.

Let’s take Cloud Computing this week and examine some competencies Continue Reading

In my last blog I talked about the key technologies breaking done our doors in 2013.  The four key areas were Cloud Computing, Social Media, Big Data and Mobile Devices.  None of these should have come as a surprise to anyone in the industry today. These are all topics that are discussed and debated around tables of Security teams in most enterprises.  So, what can we do today to ensure we are prepared for these challenges and how do we start re-enforcing our doors so that we allow these new technologies but have greater control and visibility and provide transparency for the user.

Continue Reading