Predictive risk management strategy rather than prevention is the need of the hour in the cyber security space to enable organizations to proactively identify threats and enable them to stay one step ahead of potential threats, industry experts say.
“What we have learned so far is the preventive approach, how to prevent an incident from happening from the network. Now we are talking about a predictive approach, how we can predict and block an attack on the network, ”said Anand Choudha, director of Spectrami, a distributor of cyber security solutions, TechRadar Middle East.
While the threat landscape has evolved over the years, he said new and advanced attacks are taking place every day.
"Because everything is interconnected in today's world, cyber warfare is becoming more relevant than before and that is the need to look again at the strategies and develop a predictive risk management strategy," he said.
Follow the hackers
According to Choudha, the three-way framework of a prediction-based approach – vulnerability analysis, security analysis and multi-vendor threat information – is the new trend and helps all decision makers to stop the attacks before they hit their organization.
Gartner has approved it as a predictive, preventative, detect and respond (PPDR) framework.
Sarfaraz Kazi, Spectrami's chief technology officer, said the whole idea is to stay one step ahead of the hackers.
In addition, he said, since most people practiced the prevention, detection, and response method, nobody spoke about prediction.
“People need to go beyond the network and to the dark web and deep web to see how the hackers work. Instead of waiting for the attacker to come to your home, we now switch the switch and go after the hacker to learn his tricks and procedures. Instead of being reactive, we are going to proactively hunt the hacker.
“As soon as I know the hacker's IP addresses, I can block him when he is online. I can't prevent him from going to my door, but I can prevent him from entering my house, & he said.
The three-way framework is a combination of manual and automation.
“The framework is evolving and cannot be 100% sure of what is going to help, but we see that companies that have entered predictive mode are safer than the traditional approach and that suppliers in the Middle East are expected to follow and adopt the framework. In a few years, we can say that the predictive framework is outdated and that a new framework may come out, & Choudha said.
Kazi said that cyber security is like insurance.
"We buy cheap car insurance because we do not have accidents. In accidents we think of expensive insurance. Everything works, but there are costs involved. The infrastructure costs of the defense mechanism to block attacks from national states are north of $ 10 million per years. What is missing is management support and how many companies are willing to invest so much money, "he said.
- SIM swap fraud puts users at risk with two-factor authentication
- Russia and Iran expected disruptive cyber attacks in the Middle East
- After sanctions, Iran bombardes the US with phishing emails