Needed Now: An Enterprise Cyber Threat Survival Kit
With rapid innovation and continuous delivery via DevOps, organizations are exposed to a constant, rapidly evolving threats. Equifax was recently the target of perhaps the most critical data breach ever. Hackers exploited a vulnerability in an open-source software package that allowed them to exfiltrate sensitive information on half of the US population.
How can we protect ourselves against such breaches?
Organizations need to seamlessly embed continuous security within existing ecosystems, to enforce continuous security and orchestration within the production environment.
In this webinar, DevSecOps experts Swapnil Deshmukh, Sr. Director of Emerging Technologies Security at Visa, discusses the cultural changes needed for an enterprise to imbibe and deliver continuous security, including:
- Coverage: Ensure proper metrics, analytics and reporting are in place to measure the effectiveness of existing security tools and processes; have an up-to-date inventory and complete coverage of all code published in production at any given point.
- Continuous Monitoring: Broadly applied, continuous monitoring can provide network traffic visibility. This, coupled with behavioral analysis and anomaly detection, builds necessary trustworthiness into the information systems supporting key control missions.
- Feedback Loop: A constant feedback loop from security technology stacks is critical for overall maturity of the security operation center.
Swapnil Deshmukh is a Sr. Director of Emerging Technologies Security at Visa. His team is responsible for attesting security for emerging technologies. He’s coauthored the Hacking Exposed series, is a member of OWASP and has helped Fortune 500 companies build secure operations centers.