• Recognising SE Asia’s rapid mobile and cloud technology growth and the security challenge it represents, RSA President Yoran calls for region’s organisations to re-think their approach to cyber defense
• Yoran outlines five key principles of a next generation approach to security based on faster detection and more effective response
• Keynote address reaches largest audience yet at RSA Conference Asia Pacific & Japan in Singapore
RSA CONFERENCE ASIA PACIFIC & JAPAN, SINGAPORE, JULY 22, 2015
Amit Yoran, president of RSA, The Security Division of EMC Corporation (NYSE:EMC), today issued a call for SE Asian companies and governments to re-think their traditional approaches to cyber defense as they increasingly turn to mobile and cloud technologies to store and access data and systems. Yoran addressed his comments to government and private industry cybersecurity experts in Singapore at the RSA Conference Asia Pacific & Japan. In his speech, Yoran discussed how the rapid growth of mobile and cloud technologies in Asia represent a boon to the organisations and industries of the region but also a significant threat to their legacy security operations. As mobile and cloud technologies decentralise organisations’ digital environments, the perimeter on which traditional cyber defenses are based is disappearing.
Despite the disappearing perimeter, Asian businesses and businesses around the world continue to rely primarily on perimeter protection technologies like firewalls, anti-virus, and intrusion detection systems to prevent breaches, only to see those tools invariably fail under the onslaught of today’s advanced attacks, Yoran said. Compounding that failure is the current practice of relying on SIEM and other signature-based tools that require historical experience to detect advanced threats, which oftentimes have no precedent. This combination of antiquated technologies and misguided practices is the root of the vast majority of today’s security failings.
Yoran asked the audience to re-think their approach to security, using the dramatic digital evolution of Singapore Post and the region’s other postal services as an example of the level of change required in cybersecurity. The top executive at RSA went on to outline a new approach to security focused on faster detection of and more effective response to cyber threats in a series of five principles:
1. Acceptance that even advanced protections are insufficient for today’s threats - “No matter how high or smart the walls, focused adversaries will find ways over, under, around, and through.”
2. Deep, pervasive visibility from the endpoint to the network to the cloud is necessary – “The single most common and catastrophic mistake made by security teams today is under-scoping an incident and rushing to clean up compromised systems before understanding the broader campaign.”
3. Effective management of identities matters more than ever - “In a world with no perimeter and with fewer security anchor points, identity and authentication matter more than ever . . . At some point in every successful attack campaign, the abuse of identity is a stepping stone the attackers use to impose their will.”
4. Organisations must leverage external threat intelligence - “[Threat intelligence] should be machine-readable and automated for increased speed and leverage. It should be operationalised into your security program and tailored to our organisation’s assets and interests so that analysts can quickly address the threats that pose the greatest risk.”
5. Security programs must be guided by an understanding of risk - “You must understand what matters to your business and what is mission critical. You have to . . . defend what’s important and defend it with everything you have.”
Yoran concluded by reminding the audience that the technologies already exist for companies to move to a more effective approach to security focused on faster detection and response to security threats. What is lacking is the will. “This is not a technology problem. This is a mindset problem,” Yoran said.
• Download Amit Yoran’s RSA Conference Asia Pacific & Japan keynote transcript
• Watch Amit Yoran’s keynote address • Find keynotes videos, schedules, events and sessions at RSA Conference Asia Pacific & Japan
• Connect with RSA via Twitter, Facebook, YouTube, LinkedIn and the RSA Speaking of Security Blog and Podcast
For further information please contact -
Clare Cassidy, Account Manager
02 9469 5700
About RSA RSA’s Intelligence Driven Security solutions help organisations reduce the risks of operating in a digital world. Through visibility, analysis, and action, RSA solutions give customers the ability to detect, investigate and respond to advanced threats; confirm and manage identities; and ultimately, help prevent IP theft, fraud and cybercrime. For more information on RSA, please visit www.rsa.com.
If your last access-control update was even a few years ago, you’re probably more exposed to fraud and exploitation than you’d like to be.
It’s not hard to understand why bot management is critical to maintaining business availability and customer satisfaction – but do you know how to properly deal with bots?
Increasing use of encryption has created new challenges for enterprise security managers. Ever more-sophisticated encryption such as Perfect Forward Secrecy (PFS) protects data and may even boost your Google ranking – but it also provides a haven for malicious code that may use encryption to bypass enterprise security controls.
Why nation-state attacks are everyone’s problem
With so much change all the time, how can executives best prepare their businesses to meet the security challenges of the coming years? CSO Australia, in conjunction with Mimecast, explored this question in an interactive Webinar that looks at how the threat landscape has evolved – and what we can expect in 2019 and beyond.