The threat of cybersecurity risks can seem never ending as technology stretches and grows, but there are ways to move faster than the risk. By implementing security solutions that combat the growing issue of cybersecurity, organizations can change faster than the fast-moving threat of attackers, therefore building a comprehensive approach that will protect and bring value to the existing measures in place.

On December 15th, Cymulate gathered a virtual panel of experts at Your 2022 Security Posture Playbook: Defending Against Threat Actors and Enterprise Drift to discuss how to keep up with shifting threats by creating an effective, flexible plan to protect your organization.

Check out a few takeaways from our discussion on the 15th:

1. Changing the ways to address perimeter security

Anand Satyadev of Gilead spoke about the application side of data mining and the changing landscape of legacy environments. He said now that applications are hosted in the cloud as opposed to a piece of hardware, the whole concept of perimeter security is not even relevant anymore.

“If we continue to think in those [types of] solutions to secure our applications, we will not be successful,” he said. “That’s my perspective of why we need to do things differently and can get at this from a different angle.”

2. Keeping the red team on deck

“They’re in my systems every day, trying to find things, repeating things as time goes on,” Rob Hornbuckle of Allegiant said about his red teams. “They’re still actively testing the things that alter and change. They’re performing those red team activities every day in accordance with how the business is moving.”

By keeping the red team around for daily use, systems are actively being backed up and fighting against any new threats, which means that the risk of cyber attacks is much lower.

3. Looking at the motivations of hackers to avoid attacks

While speaking about the motivations of hackers, Amit Bhardwaj of Lumentum spoke about the necessity of knowing what it is that these threats are really looking to gain from your organization.

“Now we have realized all the hackers and all the bad guys out there are not just doing it for free or to pass the time,” he said. “Understand that motivation. What is it that they’re going to come at you for, and use that to prepare your defenses.”

4. Prioritizing where to address concerns based on company needs

“It has a lot to do with balancing what’s going on from that risk perspective with what the company actually needs to get done,” Rob said about picking security battles. “It may be worthwhile to wait until the patching cycle in order to do certain systems within the environment because the business risk isn't great enough to do anything out of band.”

In prioritizing what makes the most sense for an individual organization, cost and time will be better spent.

5. Creating flexibility with the cloud and new technologies

Technology never stops changing, which is why there has to be flexibility in security systems to match.

“It’s not a cloud strategy, it’s a business strategy,” explained Amit. “If a business wants to move fast enough then you have to do the best for the business whether it takes a cloud strategy or otherwise.”

Curious to learn more about our discussion with Cymulate and our expert panelists? Access the full event content by filling out the form at the top of this page.