Why do i need a Managed Security provider?

Why assumptions in business security are bad for your business

There is an old adage that has stuck with me since my early Navy days, never assume, because it makes an ass out of you and me.

Why do i need a Managed Security provider?

Why do i need a Managed Security provider?

When it comes to business security, assumption is a really bad place to be.    It happens all of the time!   We are assuming that the bad guys are only as clever or dumb as the person who puts the security together.
We have seen, heard, read and demonstrated that this is not the case.    The criminals who use the digital world to perpetrate their crimes are neither stupid nor dumb.   In most cases, especial in the true criminal environments, they can be exceedingly clever in their chosen field.
Their chosen field is using technology to separate you from your money, your trade secrets or your technology.
They are very good at it.
Why is it
In most business environments, small, medium, large or not for profit, the ICT department / person / person who knows computers is full on keeping systems working.   They are firefighting, troubleshooting and just keeping their noses above the level of crud that is the job.
The do not have time to implement stringent security measures so they revert to ‘easy wins’.
A firewall, maybe an acceptable use policy, anti virus and updates.   Anything that they can implement in a couple of hours and tick the box that says they are now secure – usual because the sales person said so.
In today’s rarefied cybercrime environment this is no longer enough.
It is not their fault, there are not enough hours in the working day to implement most of the strategies for a secure business environment.
This is where an external cybersecurity contractor comes into it.   A contractor who will augment your system, make it more secure, test it and deliver outcomes that, although expected, never usually eventuate inside the business.
Like everything else in today’s world finding the right one, one that is not going to rip you off, one who knows there stuff and one who uses or has developed a framework for security is very hard to find.

Crypto Virus and educating your users

Any cyber attack can have serious implications for your business.

Before you say, that wouldn’t happen to us! Let me explain.

From a simple malware infection to a full blown DDOS attack the results on your business can be devastating.

The newest attack weapon of the digital criminal is crypto virus. If you get it, you had better have some serious protective strategies in place.

Crypto virus can be and is delivered to your business through an email, from an infected web site, from a dropped USB drive or by one of your staff members making a silly little mistake. Any of them can severely damage your organisations ability to make money.

But we have anti virus! We have a firewall!

So does everyone else.

So did most of the victims!

Most of the businesses who have been compromised by crypto virus have some type of protection. They had end point protection, they had firewalls, they had the newest systems and they were prepared because “we put it in 12 months ago”.

What they lack is insight!

What they lack is education.

Removing the lackadaisical attitude of “it wont happen to me” is very important. To do that we all have to learn a new paradigm.

We have to learn three things:

* Trust no one
* Be paranoid
* Be aware.

Managers, board members, owners have a responsibility to their business to protect it the best they can. That in itself is a hard thing to do. What it means is that you have to change the way you think.

If you don’t know the issues you can never implement the right solutions.

Your first step is your own education.

That is where we come in.

Implementing a new paradigm, means we have to learn something new. Learn something about it.

To learn something you have to come and see me. I will show you how the bad guys work.

I will show you how malicious software (virus, worm, Trojan, compromise) attacks your business, removes information and destroys the evidence. I will show you why you need to get educated and from that educate your staff.

This is an important subject.

Should social engineering be part of a Penetration Test?

In one word – never.

A penetration test is designed to test technology, rectify problems and issues with that technology as well as make sure that the technology is installed and configured correctly.

Social engineering has 2 components – the technology (malware, ransomware, worm) to compromise your system and getting someone inside the organisation to open an attachement, download an application or go to an infected website. The easiest part of social engineering is getting someone inside your organisation to do something stupid.

Social engineering should only be included if the organisation has carried out a significant education program and to test that that education has actually worked.

Why do i need a Managed Security provider?

Why do i need a Managed Security provider?

The threat landscape has changed significantly in the last 10 years. Those changes have been, in most cases, for the better.

The whole digital world has changed as well. In most cases there are not enough IT specialists available, never mind ones who have the additional knowledge of how to protect their environment to go around.

Understanding digital security, testing defences and thinking like a cyber criminal is not what everyone wants to do.

This is where a managed security provider comes in. In most cases they live and breath in this space. They are experts in Business security including applying the NIST Framework to business

What is the difference between a Penetration Test and a vulnerability scan?

What is the difference between a Penetration Test and a vulnerability scan?

A penetration test includes a number of vulnerability scans.

Those different scans will highlight different issues with the hardware and software installed in the organization. Those scans show what maybe an issue with the organisation.

If your organisation received a report that said that these vulnerability have been discovered but have not shown that they can be exploited then you are getting a raw deal and you are wasting your money.

A vulnerability scan will highlight issues, a penetration test will show if the bad guys can access your system and steal anything.

Why does my company need to do a penetration test?

Why does my company need to do a penetration test?

The business world revolves around digital requirements. There is always a new system available, the next shiny thing, that is going to make the organisation more nimble, safer, more secure and any other marketing or sales hype.

Each of those system relies on technology and technology has flaws. Those flaws can drastically impact a businesses viability. It can also have a detrimental impact on cash flow, revenue and reputation.

A penetration test is designed to find those vulnerabilities before they are exploited by the digital bad guys and mitigate the risks of it happening.