How to Prepare Your SOC for Maximum Business Resiliency - Part 1

As organizations shift to new models and modes of working, businesses must change the way they protect their IT systems and processes from cyber risk

Clayton Dukes, CEO


How to Prepare Your SOC for Maximum Business Resiliency - Part 1

Sunday, September 27, 2020

As organizations shift gears with new business models and new modes of working, businesses must also change the way they protect their systems and processes from cyber risk.

Workforce trends now require security teams to rethink how they provide security access for distributed teams. Even before the massive changes brought on by COVID-19, businesses had already identified the enablement of remote and mobile workers as a key component for innovation and growth. Moving forward, they are also witnessing how highly-secure, tech-enabled remote workforces are crucial for maintaining business continuity.

Given how rapidly cybersecurity threats emerge and change, it can be hard to keep up. The challenge is especially difficult for global companies, which should combat an endless stream of cybersecurity threats while demonstrating regulatory compliance in the jurisdictions in which they operate.

All of this means that security leaders must be ready to build security programs that will take their operations to a whole new level of risk reduction—without hampering the flexibility and recovery offered by digital transformation in a post-pandemic business world.

When it comes to managing your new and highly-mobile workforce, there are multiple challenges that create communication inefficiencies within your business so let’s review the three top tips to get you started:

1. Business Alignment

Security leadership should be speaking in same language as business leadership and helping drive the security program in the same direction the business is moving. Namely, toward profitability and long-term viability. Security leaders shouldn’t be out to stop or slow digital transformation with barriers and speed bumps. Instead, they should be seeking ways to design highly secure guardrails that keep transformative efforts safely moving on the track set by the C-suite and board. This requires close alignment and collaboration with lines of business to provide that cyber risks are always framed in light of business risks.

2. Effective prioritization

The reason business alignment is so important is because no organization can realistically afford to provide protection for all of its technology assets equally. This is especially true in light of how rapidly digital transformation expands our technological footprints. As such, a risk-based approach demands effective prioritization of investments and controls that are tied directly to business objectives and priorities. This way, high-value assets get high-value protection. The best security programs create mechanisms that offer systematic and proactive ways to prioritize risks based on threat levels, value of the asset at risk, and cost to the business (making the necessary security investment).

3. Measurement

Business transformation today relies on security technology that can be proven, so security teams need to show they’re actually reducing risk, saving money, and taking business objectives into account while carrying out their mission. To do that, they must measure and report on security effectiveness to their leadership. CEOs, CIOs, and board members are asking for quantitative security metrics that validate security controls are working.

Security leaders should always be sure those metrics tie back to loss events and quantitative revenue measures. Being able to quantify the efficacy of a security program in business terms changes the conversation from, “Nothing bad happened last year; can we keep our budget?” to “We showed a 20% gain in efficiency; we mitigated x risk by x%.” That shift helps leadership understand what cybersecurity is doing for the business in context of business goals.

Stay tuned next week where LogZilla’s CEO, Clayton Dukes, will continue part two of our three-part post. LogZilla will frame the most important building blocks that can help any IT team improve on the fundamentals of risk-based cybersecurity including your security culture and the risk appetite…hint, hint… watch how LogZilla’s NEO centralized log management platform is redefining networks to support the next wave of cyber demand.



Clayton Dukes

Clayton Dukes

CEO

4819 Emperor Boulevard Suite 400
Raleigh, NC,27703

About Clayton

Clayton Dukes leverages over two decades of experience in network systems design, implementation, and management. Early years included designing an open source solution to solve network event management challenges as a Datacenter Lead Engineer at Cisco, which and ultimately led to a later-creation of the LogZilla Network Event Orchestrator platform. Dukes has co-authored the CCIE SP OPS certification and resides in North Carolina
Tags: COVID-19 , LogZilla Network Event Orchestrator , LogZilla NEO , cyber risk , risk-based cybersecurity , digital transformation , business transformation , security