defence of certain points , while other major blind spots are not properly defended and there ’ s a lack of awareness and risk acceptance from the business . These disconnected situations may result in a negative scenario ,” says Ariel . “ There is also limited raw telemetry collection and retention , which impedes the ability to detect , hunt or investigate cyber attacks . Cyber defence teams do not always have a clear and open view of the threat landscape , or of the adversarial point of view . In such cases , it is almost impossible to provide proper cyber defence to the business ,” he continues to explain . “ The defence would be passive , driven by native alerts coming from security tools , lacking the holistic understanding of the ‘ 3D chess game ’ we play every day with our adversaries , as cyber defence professionals .”
Another potential pitfall in security defences is that it ' s common to see security organisations that simply don ’ t measure the right KPIs . “ If you don ’ t define the KPIs properly ,” says Ariel , “ you ’ ll be creating the wrong incentives for the security teams , which will eventually lead to ineffective resource allocation , low team effectiveness and , potentially , to cyber compromise .”
cybermagazine . com 127