Couldn’t attend Transform 2022? Check out all the top sessions in our on-demand library now! Look here.
Faced with an intensification of cybercrime, cybersecurity has become a dominant concern for businesses in recent years. IT managers are beginning to realize that their security architecture needs to be able to adapt to constant change if they want to stay ahead of the curve. Let’s take a look at how real the threats are and what effective systems need to be put in place to deter them.
Cyber Threats: What Does Your Organization Risk?
According to the American Chamber of Commerce, there are: 31.7 million small businesses in America, accounting for 99.9% of all US businesses. With threats from cyber-attacks on the rise, 88% of small business owners admit they are vulnerable and are concerned about what solutions are available at an affordable cost. Recent headlines clearly show that cyber-attacks affect all organizations without discrimination, regardless of sector or size. In fact, the global cost of cybercrime continues to rise and is expected to rise $10.5 trillion by 2025, according to predictions from the 2022 Cybersecurity Almanac.
In addition to the frequency, cyber attacks are also becoming more complex. Aided by technology, cybercriminals are developing threats that can penetrate systems through multiple entry points, making detection more difficult and increasing the likelihood of success.
All of this leads to the conclusion that desktop-only detection and response solutions are no longer sufficient to ensure optimal security for an organization.
MetaBeat will bring together thought leaders to offer advice on how metaverse technology will change the way all industries communicate and do business October 4 in San Francisco, CA.
XDR: The future of cybersecurity?
The XDR (comprehensive detection and response) ecosystem evolved from EDR (endpoint detection and response) and gives you the ability to go even further by consolidating different products into a single incident detection and response platform. This cross-infrastructure capability is the common denominator of XDR, which stands out at this stage as an optimal solution for preventing cyber-attacks.
This system is fully automated and replaces the detection and investigation processes previously performed manually by internal resources. Due to its “extended” nature, an XDR interface can analyze and detect multiple security vectors, such as network, cloud, messaging, and other third-party security points.
This single pane of glass capability automates much of the diagnosis and decision making for the individuals involved by relieving them of time-consuming and administrative tasks.
While XDR is truly within the reach of any organization, realizing its full benefits depends on the organization’s cybersecurity maturity. Organizations that lack the resources (software or people) will clearly benefit from such a solution. On the other hand, mid to high-maturity cybersecurity organizations, which may already have the resources, will see an advantage in the automation of understanding the data, leaving the people free to further mitigate threats.
What should you pay attention to with an XDR supplier?
Ultimately, any business that plans to equip itself with an XDR interface will want to maximize its operational efficiency by reducing the risks impacting the security of the business. When evaluating XDR vendors, it is then necessary to verify that the proposed solutions enable:
- More accurate detection, leading to more accurate prevention.
- Better adaptability to the evolution of technologies and infrastructures.
- Fewer blind spots and better overview.
- Faster detection time or mean time to detection (MTTD).
- Faster recovery time or average response time (MTTR).
- Faster and more accurate investigations (fewer false positives) for greater control over the entire IT infrastructure.
When evaluating suppliers, look under the hood and ask questions. For example, ask whether data from all individual vectors has been automatically reviewed and triaged, and whether the system provides meaningful and actionable next steps. Ultimately, it’s essential to partner with a company that helps your business stay ahead of the competition and arm it well against new emerging threats.
Aparna Rayasam is Chief Product Officer at Trellix.
Welcome to the VentureBeat Community!
DataDecisionMakers is where experts, including the technical people who do data work, can share data-related insights and innovation.
If you want to read about the latest ideas and up-to-date information, best practices and the future of data and data technology, join us at DataDecisionMakers.
You might even consider contributing an article yourself!
Read more from DataDecisionMakers