- CISO Series Newsletter
- Posts
- 05-14-20 - What Works Best? Prevent or Detect and Contain?
05-14-20 - What Works Best? Prevent or Detect and Contain?
What Works Best? Prevent or Detect and Contain?
This week's episode of Defense in Depth
Prevention vs. Detection and Containment
On this episode of Defense in Depth:
Co-host Allan Alford and sponsored guest Steve Salinas, head of product marketing, Deep Instinct, discussed:
A recent Ponemon study notes that most security professionals agree that prevention is a better security strategy than detection and containment.
Even with the acceptance that prevention is a better security posture, most security spending goes into detection and containment.
By implementing firewalls, patching, and security training, many of us are already doing prevention, but may not classify it as such.
Prevention is not nearly as expensive as creating a detect and respond security program.
The two halves work in concert together. No prevention program can be perfect, and that's why you always need a detect and contain program as well.
The reason you don't only go with detect and respond without prevention is that the flood of valid information will be too much for a security program to handle.
There was a strong argument for detect and respond because it shows the products you spent money on are actually working. This is not just to humor the security professional, but also to give some "evidence" to the senior executives.
A lot of prevention comes down to the individual. But since it's so tough to get people to change behavior, there's less friction to just purchase another prevention tool to protect people from their own behavior.
Prevention tools won't stop the attackers who sit dormant on a network waiting to attack. Their behavior has to be spotted with the use of detection and containment.
Thanks to this week's sponsor of Defense in Depth, Deep Instinct.
Deep Instinct is changing cybersecurity by harnessing the power of Deep Learning to prevent threats in zero time. Deep Instinct’s on-device, solution protects against zero-day, APT, ransomware attacks, and against both known and unknown malware with unmatched accuracy and speed. Find out more about the solution’s wide covering platform play.
Upcoming Video Chat
TOMORROW [5-15-20] Hacking the Speed of GRC
Join us for “Hacking the Visibility of the Cloud: An hour of critical thinking about what we can see and what we’d like to see in the cloud”.
It’s happening on Friday, May 15th, 2020 at 10 AM Pacific/1 PM Eastern.
Friday [5-29-20] Hacking Zero Budget Security
Join us for “Hacking Zero Budget Security: An hour of critical thinking about what you can do with an all-star security team and no budget for tools”.
It's happening on Friday, May 29th, 2020 at 10 AM Pacific/1 PM Eastern
Best Moments from "Hacking the Speed of GRC"
Highlights from “Hacking the Speed of GRC” Video Chat. To watch the full video go here.
I moderated a discussion on Friday, 05-08-20 with Scott McCormick, CISO, Reciprocity and Mike Wilkes, CISO, ASCAP.
We had tons of great bad ideas that fed a spectacular discussion around many different aspects of governance, risk, and compliance.Check out the video and post for the winner of best bad idea and some notable quotes from the chatroom.
Thanks to our video chat sponsor, Reciprocity.
ZenGRC by Reciprocity is a cloud-based GRC software that automates and simplifies compliance and risk management, solving critical problems at scale while customizing to your business needs. Adhering to the majority of regulations is a snap with pre-built templates and a unified system of record. Learn more at
.
SUBSCRIBE TO BOTH PODCASTS
Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.
If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.