In his most recent blog post, Art Coviello, the executive chairman at RSA posed an important question. How do we move from traditional security to intelligence-driven security? In his answer he described that the quickly interdependent exchanges between parties (B2C, B2B, B2P, etc) have grown beyond the traditional means of securing the enterprise:
“IT organizations have continued to construct security infrastructures around a disintegrating perimeter of increasingly ineffective controls.”
He described a new-model of cyber-security that includes 5 concepts:
- A thorough understanding of risk
- The use of agile controls based on pattern recognition and predictive analytics
- The use of big data analytics to give context to vast streams of data to produce timely, actionable information
- Personnel with the right skill set to operate the systems
- Information sharing at scale
I have to stand up and applaud. I have been waiting for someone of Art’s stature to publicly acknowledge that …