Who Is the Biggest Threat to Your Cyber Security?
In insight / By Mark Flynn / 06 August 2018
Cyber security Update: why rogue employees are your biggest threat, the impact AI is having on the cyber skills shortage and finally why you need to address the issue of security bloatware.
The first issue is who’s the biggest threat to your cyber security - the hacker or someone closer to home that you employ? Most of the time we are bombarded with information about outside threats, therefore people tend to focus on these more, but should we be looking closer to home?
The answer is we should be on the lookout for both threats, but they affect us in different ways. Outsider attacks can either be targeted assaults or random scattergun attacks that just happen to hit your systems and are therefore more likely to happen.
Insider hacks, on the other hand, are few and far between but they can do far more damage. There are two kinds of insider attacks, firstly there’s the accidental loss of intellectual property or leak which could lead to issues but isn’t malicious. The second kind, however, is done with the intent to harm and is carried out either by the abuse of a position or by stealing company secrets.
It is therefore important to keep both kinds of breaches in mind if you are to have a robust cyber defence.
The second issue should come as no surprise to anyone that deals with cyber security: the cyber skills gap.
According to a recent survey, just 35% of companies felt that they had enough cyber security professionals to deal with current threats.
The lack of fully trainer professionals has become such a big issue that it has begun to shape cyber security from both sides, with hackers and security specialists seeking methods to automate as much as possible.
This is the reason AI is so keenly embraced by the cyber security community because it will help automate a multitude of tasks, leaving more time for specialists to look at new threats and do the things that only a human can do.
Finally, addressing the issue of bloatware could actually help lighten the burden on cyber security professionals.
When a company hears about a new or enhanced type of threat they often seek out a tool designed to deal with the specific threat. However, this can be the wrong thing to do as it results in bloatware.
Bloatware is an issue for two reasons, firstly with so many different tools to use and manage, your IT department doesn’t have time to make use of all the functions the cybersecurity tool has.
The second and more worrying issue is that all the different tools don’t work together properly leading to gaps in your cybersecurity defence.
The best way forward is to reduce the amount of security products you use, focusing on a smaller set of key tools to keep your defence tight and effective against threats.