The Evolving Threat Environment
Shift Cybersecurity Investment to Detection and Response" — IT risk and security leaders must move from trying to prevent every threat and acknowledge that perfect protection is not achievable. Organizations need to detect and respond to malicious behaviors and incidents, because even the best preventative controls will not prevent all incidents.
Prepare for and Respond to a Business Disruption After an Aggressive Cyberattack" — Awareness is skyrocketing in boardrooms around the globe of the rapid increase, breadth and depth of cyberattacks and their resulting financial and reputational impacts. Organizations must integrate security incident response processes with those used for business continuity management.
Cybersecurity Scenario 2020 Phase 2: Guardians for Big Change" — Changes in computing fabric, devices and services wrought by digital business continue to shape risk and security landscapes. Business transparency and digital value generation drive security and risk leaders to develop security and risk practices for business resilience.
Best Practices for Detecting and Mitigating Advanced Threats, 2016 Update" — Information security, network and communications practitioners are obligated to employ best practices to prevent, detect and mitigate advanced threats. These practitioners should leverage existing and emerging security technologies in their security architectures.
Building a Strong Advanced Threat Defense Posture" — The ongoing episodes of high-profile security breaches in today's environment are inspiring a shift in security strategy. Most CISOs accept that all attacks cannot be prevented; malicious activity is now too frequent, too well-disguised or too innovative for an organization to rely on a perfect prevention strategy.
Understanding Insider Threats" — Risk and information security practitioners struggle to understand and address insider threats. Gartner did an in-depth survey with 186 participants to understand insider threats through current incidents. Here, we summarize the results and identify steps for addressing different kinds of threats.
How to Plan and Execute a Threat Assessment" — The threat assessment process makes use of threat intelligence to determine which threats are relevant to an organization. It identifies relevant threat types, specific threats and explicit threat actors to include in risk management processes.
Use These Five Backup and Recovery Best Practices to Protect Against Ransomware" — Ransomware is on the rise, and its perpetrators are effectively evading countermeasures. Infrastructure and operations and business continuity management leaders should plan for the inevitable limited or widespread ransomware incident.
CISO Playbook: Master Wireless Technology Security Risks" — Wireless communications are growing in variety in every company. To prioritize wireless security investment, CISOs should consider the potential risks and develop mitigating best practices, including restricting enterprise wireless communications by limiting accessible networks and services.