Collective wisdom and intelligence for defense in depth
We have TWO major areas to deal with while building defense for a digital business:
“Vulnerabilities” and “Malwares”.
“Vulnerabilities” refer to known/unknown weaknesses in a digital ecosystem, “Malwares” refer to a malicious content/tool/mechanism used with malicious intent)
“Vulnerabilities” exist since we started using digital machines. Continuous evolution has been increasing the numbers. “Malwares” intend to exploit vulnerabilities to disrupt expected digital behavior.
To ensure normalcy, we need to deploy TWO capabilities for defense - Detection and Response for both Vulnerabilities as well Malwares. Sooner, the better. With increasing threats, we need continuous detection and response for protection. Overall defense effectiveness depends on “when” and “how much” we counter an attempt or attack.
There are TWO complementary ideas for building defense in a digital ecosystem. One as Admin control and the other is technology
1. Applying Administrative controls
Here, the questions are: What is required? What is applicable? How to apply? What are the guidelines? etc. The collective wisdom in various security standards and guidelines could start up the ideas on building defense.
2. Next comes, Technology controls
We may not get a definitive answer for this. It depends on the digital perimeter and the surface in scope. Given the digital dynamics, we may need to apply multiple layers of controls. It could include applying capabilities for scanning, discovery, patching, detection, prevention, monitoring and learning. Leveraging analysis of vulnerabilities and malwares could bring speed with collective intelligence.
For both the ideas, Automated detection and response, preferably at the speed of light could address business continuity and aspirations.
With number of guidelines, tools, and methods available from various sources, building defense in depth requires comprehensive approach.
Continuously applying collective wisdom and intelligence could help building deeper levels of defense for a digital business.
