get into the mind of an attacker

Fundamental to any defensive strategy is trying to get into the attacker’s mind.

This is according to Justin Fier, Vice President of Tactical Risk and Response at Darktrace, in a recent computing At the IT Leaders Festival, organizations said they need to be less reactive and more proactive in fighting attacks before they do serious damage.

This is hardly a new insight. After all, threat intelligence, vulnerability management, red team/blue team simulations, penetration testing, attack surface management (ASM), and many other techniques cybersecurity professionals use to stay ahead of attackers. , all of which can provide valuable insight into areas of weakness. But there are some issues.

“None of these talk to each other. They’re still very siled solutions.”

In addition, Fier continues, these approaches don’t scale well.

“They are human-driven approaches, and as we all know, we don’t have enough humans in our industry to do the job.”

This has been true for much of the last decade and explains why automated cyber response has become an imperative as human capabilities have failed to keep up with the increasing speed and variety of attacks.

of dark trace The approach is to tie all these silos together and treat the output of one as the input of another. Attack simulations can then interact with her ASM, which can be utilized by penetration testers and the like.

“You have to think a little differently about how you manage. cyber risksaid Fear.