The more cybersecurity specialists defend against cyberthreats, the more ways criminals find to attack. That’s why it’s time to take control back.
If you’re working in an IT job that specialises in cybersecurity, the pressure to remain on top of threats can be immense. With present risks changing and new ones emerging all the time, the key to staying afloat in the shifting currents of cybercrime is to not just understand the threat landscape, but take control and fight back.
Spending up, confidence down
According to the latest report from leading cybercrime research firm Cybersecurity Ventures, there will be a significant increase in global cybersecurity investment, with companies worldwide likely to spend upwards of 13 figures in total between 2017 and 2021.
“We expect worldwide spending on cybersecurity products and services to eclipse $1 trillion cumulatively for the five-year period from 2017 to 2021” said Editor-In-Chief and Founder of Cybersecurity Ventures Steve Morgan.
However, this rise in cybersecurity investment does not seem to translate to general feelings of safety. In fact, the 2017 Global Cybersecurity Assurance Report Card from Tenable Network Security found the confidence levels of global security practitioners has fallen to around 70 per cent.
“Today’s network is constantly changing mobile devices, cloud, IoT, web apps, containers, virtual machines – and the data indicate that a lot of organisations lack the visibility they need to feel confident in their security posture,” said Tenable Network Security Strategist Cris Thomas. “It’s pretty clear that newer technologies like DevOps and containers contributed to driving the overall score down, but the real story isn’t just one or two things that need improvement, it’s that everything needs improvement.”
Changing the cybercrime game
As many cybersecurity specialists will understand, the more you work to defend against cybercrime, the more ways perpetrators find to attack. That’s why Vincent Weafer Vice President of McAfee Laps at Intel Security argues that it’s time for IT professionals to take control back.
“To change the rules of the game between attackers and defenders, we need to neutralise our adversaries’ greatest advantages,” he explained.
“To overcome the designs of our adversaries, we need to go beyond understanding the threat landscape to changing the defender-attacker dynamics in six key areas: information asymmetry, making attacks more expensive, improving visibility, better identifying exploitation of legitimacy, improving protection for decentralised data, and detecting and protecting in agent-less environments.”