While many security solutions (e.g., CASB, ATP, MTD, DMARC/SPF, EDR) look to catch malware / ransomware threats before they are experienced, isn't the response to a ransomware incident a service continuity challenge?
With proper RPO terms, as well as tested BCP/DR procedures, ransomware response should be relatively painless. The real concern is your ecosystem, as many third parties wont have the same governance regarding BCP/DR as a large enterprise.
Showing posts with label MTD. Show all posts
Showing posts with label MTD. Show all posts
Monday, March 6, 2017
Wednesday, January 25, 2017
Focus First on Mobile Threat Defense (MTD) or Endpoint Detection & Response (EDR)
A reality of corporate life is economics, defined as the allocation of scarce resources. So, with finite budgets, what is an IT shop to do regarding malware protection outside of the data center?
While the prevailing opinion is that traditional anti-virus (AV) no longer works for contemporary threats, and the fact that mobile device management does not handle malware, EDR stands as the apparent silver bullet. However, most EDR solutions do not extend to the mobile space, and due to that a MTD may be the better investment to embark on first for a distributed enterprise.
Additional decision points include: industry, allowance of local admin rights, how distributed is the enterprise, usage of local drives vs EDM / ECM (e.g., SharePoint, network file shares), and the global network topology.
While the prevailing opinion is that traditional anti-virus (AV) no longer works for contemporary threats, and the fact that mobile device management does not handle malware, EDR stands as the apparent silver bullet. However, most EDR solutions do not extend to the mobile space, and due to that a MTD may be the better investment to embark on first for a distributed enterprise.
Additional decision points include: industry, allowance of local admin rights, how distributed is the enterprise, usage of local drives vs EDM / ECM (e.g., SharePoint, network file shares), and the global network topology.
Subscribe to:
Posts (Atom)