2020-07-23T11:13:00Z

What are some of the biggest mistakes that businesses make when it comes to monitoring cyber threats?


What are the most common mistakes that businesses make regarding cyber threats? What measures can be put in place to avoid these mistakes? Do you have threat intelligence tools that you swear by to help with monitoring cyber threats?

Guest
22 Answers

author avatar
Top 5LeaderboardReal User

We know that cyber security is an important concern for every organisation. The management of any organisation face the task of ensuring that their organisations understand the threat and set the right priorities. The management of any organisation face the task of ensuring that their organisations understand the threat and set the right priorities.


The management of any organisation face the task of ensuring that their organisations understand the threat and set the right priorities. The management of any organisation face the task of ensuring that their organisations understand the threat and set the right priorities.


To many, cyber security is a bit of a mystery. This is probably one of the reasons why it is not always approached appropriately.


Lacking knowledge of cybersecurity.


Mistake: “We have to achieve 100% security”


Reality: 100% security is neither feasible nor the appropriate goal


Developing the awareness that 100% protection against cyber crime is neither a feasible nor an appropriate goal is already an important step towards a more effective policy, because it allows you to make choices about your defensive posture. A good defense posture is based on understanding the threat (i.e. the criminal) relative to organisational vulnerability (prevention), establishing mechanisms to detect an imminent or actual breach (detection) and establishing a capability that immediately deals with incidents (response) to minimize loss.


Mistake: “When we invest in best- of-class technical tools, we are safe”


Reality: Effective cyber security is less dependent on technology than you think.


Good security starts with developing a robust cyber defense capability.


Although this is generally led by the IT department (who should be aware of the importance of cyber security), the knowledge and awareness of the end user is critical.


Mistake: Neglecting Security Testing


These require regular testing through both automated vulnerability scanning and deep-dive penetration testing.


Mistake: Concentrating Too Much on the Perimeter.


Mistake: Disregarding Security Awareness Training.


Train your staff in everything from laptop protection to social engineering identification. And don't forget to retrain because the scams continue to get sneakier.



  • Sending valuable data to incorrect recipients via email

  • Accidentally emailing documents with sensitive data

  • Publishing confidential data on public websites by mistake

  • Misconfiguring assets to allow for unwanted access

  • Mistake: Believing a Breach Won't Happen to You.


They have to follow the below Cyber trends and the future model


Summary of techniques and vulnerabilities focused by threat actions.


Who are the actors?


How do they function?


What techniques do they use?


How do they get in to your environment?


How do they exploit corporate challenges?


What potential impact can they cause?


These issues coupled with common other mistakes – failure to plan, failure to define scope and being overly optimistic in scoping – were the pitfalls of SIEM implementations. This has not stopped CIOs and CISOs aggressively positioning SIEM as a silver bullet, to the extent of engaging 3rd party service providers to assist in monitoring.

2020-07-28T06:19:12Z
Find out what your peers are saying about CrowdStrike Falcon vs. ReversingLabs Titanium Platform and other solutions. Updated: October 2020.
447,654 professionals have used our research since 2012.