Modern field guide to security and privacy

Fighting digital adversaries means knowing your network

Despite diverse threats and difficulty managing networks in an age of millions of connected devices, cyberdefenders are optimistic about the future, according to Tenable Network Security’s Cybersecurity Assurance Report Card.

|
Michael Bonfigli, The Christian Science Monitor
In this December 14, 2016 photo, Cris Thomas (widely known as Space Rogue, among his peers and colleagues), a strategist at Tenable Network Security speaks at a recent Passcode event in Washington D.C. on global cybersecurity.

For Cris Thomas, not much has changed since the late-90s. 

Then, testifying before Congress as a fresh-faced 20-something under the alias Space Rogue, he warned that many digital defenders couldn’t properly safeguard their networks. The software companies Americans trusted to write secure programs, he said, simply refused to fix vulnerabilities found by security researchers. 

“The fundamental, basic undercurrents of security hasn’t changed that much in all that time,” said Mr. Thomas, now a strategist at Tenable Network Security.  ”One of those fundamental things is knowing your network because you can’t secure what you don’t know.” 

Today, as digital connectivity touches our devices from our cars to our watches to our televisions, companies are more open to working with researchers — but that proliferation of software means cyberdefenders still struggle to keep up even if they are optimistic about their ability to counter future cyberthreats. 

That’s the upshot of Tenable’s recently-released Cybersecurity Assurance Report Card.

The report gauges the attitudes and perceptions of security practitioners across the world in various industries. Given that insight, it also provided some key recommendations — among them, “knowing yourself” because “you can’t secure what you can’t see.”

Knowing yourself “means having continuous visibility into cloud, hybrid and on-premise environments,” according to the report, “but organizations also have to stay ahead of security challenges that accompany new trends and technologies.” 

But, despite all the challenges these recommendations hint at, network protectors still feel confident in their ability to protect their users. 

One of the last questions asked in Tenable’s Cybersecurity Assurance Report Card was: “Compared to this time last year, do you feel more optimistic or pessimistic about your organization’s ability to defend itself against cyber attacks?” 

Almost 90 percent of those asked felt the same or better about the future. 

“As a defender you’re getting beat down by all this red ink and breaches,” said Thomas, at a Passcode event this month. 

“But you’re still maintaining a positive attitude: ‘Yes, we can still defend our network. We can still defeat the bad guys. We’ll live another day and fight the good fight.’” 

You've read  of  free articles. Subscribe to continue.
Real news can be honest, hopeful, credible, constructive.
What is the Monitor difference? Tackling the tough headlines – with humanity. Listening to sources – with respect. Seeing the story that others are missing by reporting what so often gets overlooked: the values that connect us. That’s Monitor reporting – news that changes how you see the world.

Dear Reader,

About a year ago, I happened upon this statement about the Monitor in the Harvard Business Review – under the charming heading of “do things that don’t interest you”:

“Many things that end up” being meaningful, writes social scientist Joseph Grenny, “have come from conference workshops, articles, or online videos that began as a chore and ended with an insight. My work in Kenya, for example, was heavily influenced by a Christian Science Monitor article I had forced myself to read 10 years earlier. Sometimes, we call things ‘boring’ simply because they lie outside the box we are currently in.”

If you were to come up with a punchline to a joke about the Monitor, that would probably be it. We’re seen as being global, fair, insightful, and perhaps a bit too earnest. We’re the bran muffin of journalism.

But you know what? We change lives. And I’m going to argue that we change lives precisely because we force open that too-small box that most human beings think they live in.

The Monitor is a peculiar little publication that’s hard for the world to figure out. We’re run by a church, but we’re not only for church members and we’re not about converting people. We’re known as being fair even as the world becomes as polarized as at any time since the newspaper’s founding in 1908.

We have a mission beyond circulation, we want to bridge divides. We’re about kicking down the door of thought everywhere and saying, “You are bigger and more capable than you realize. And we can prove it.”

If you’re looking for bran muffin journalism, you can subscribe to the Monitor for $15. You’ll get the Monitor Weekly magazine, the Monitor Daily email, and unlimited access to CSMonitor.com.

QR Code to Fighting digital adversaries means knowing your network
Read this article in
https://www.csmonitor.com/World/Passcode/2016/1219/Fighting-digital-adversaries-means-knowing-your-network
QR Code to Subscription page
Start your subscription today
https://www.csmonitor.com/subscribe