EDITOR ’ S QUESTION
RAY KAFITY , VP-META , ATTIVO NETWORKS
Over the past couple of years , CIOs have seen their organisations exposed to an increasing threat of cyberattacks , often facing the challenge of their enterprise networks being vulnerable to lateral movement .
These experts are often well-versed in the role lateral movement plays in attacks , but organisations still need to back up this knowledge with action . And as this issue becomes more and more serious , CIOs are expanding their focus on this matter . However , most still rely heavily on perimeter protection , behavioural anomaly detection , and log management , providing limited visibility and unmanageable alert volumes . Modern advanced threats actively use horizontal movement , which has become an Achilles heel for many organisations .
Endpoint security has evolved from endpoint detection and response ( EDR ) and endpoint protection platforms ( EPPs ) solutions to ones with enhanced endpoint protection solutions . However , despite these advancements in endpoint security defences , there are still fundamental weaknesses in preventing credential theft and misuse , privilege escalation , and lateral movement attack activities . CIOs need to move beyond relying only on EDR and incorporate solutions to address these weaknesses .
Extended detection and response ( XDR ) is a natural evolution of EDR to improve the reliability and efficiency of security operations with enhanced detection and response capabilities . XDR consolidates multiple security products into a single security incident detection and response platform capable of identifying suspicious activity in near-real-time .
Identity threat detection and response ( ITDR ) and cyber deception-based detection can complement XDR systems by sharing alerts with additional correlated attack data and activate incident response .
Endpoint security is a significant concern for today ’ s organisations and has only grown more complex since many companies have transitioned to having a hybrid workforce . And as a result , organisations need to address the critical security challenges associated with a hybrid workforce to ensure their employees ’ and organisations ’ safety . Cybercriminals also engage in modern attack tactics that include reusing stolen credentials , exploiting zero-day vulnerabilities , employing ransomware , and exploiting trusted insiders . Unfortunately , it only takes one mistake , poorly secured device , or weak password to give attackers the opening they need to get inside the network .
With many employees stepping away from their jobs in 2021 , combined with the skilled IT shortage and the anticipated Great Resignation of 2022 , organisations will continue to compete to attract and retain highly skilled cybersecurity talent . One way that companies can build their skills capacity is to hold on to talent as much as possible . Companies that offer robust benefits and perks , remote working , flexible hours , and subsidised childcare will come out on top in the battle for talent .
Endpoint security has evolved from endpoint detection and response and endpoint protection platforms solutions to ones with enhanced endpoint protection solutions .
www . intelligentcio . com INTELLIGENTCIO AFRICA 27