2018 planning (6 of 9): Security and riskDecember 19, 2017
This is the next in our series of deep dives on Gartner’s planning guides for 2018. This week—security and risk management. It’s top of mind for organizations everywhere, particularly given all the recent data breaches and outages splashed across the news. Not to mention that we’re all working hard to get ready for the European General Data Protection Regulation, which goes into effect mid next year.
Given this increase in cyber-attacks and uncertainty around new privacy regulations, it can be difficult to know what to focus on. So, we’ve taken a look at Gartner’s planning guide on this topic and plucked out some key themes that tie in to conversations we’ve been having with Binary Tree customers. These are the top 4 things you can do in 2018 to up your security.
Go back to the basics
Keep focusing on making your basic security measures stronger. There can be a tendency to put all your energy into making big changes to address new regulations or respond to an attack. But you still need to meet a minimum baseline—one that shifts over time as attackers grow more sophisticated. Make sure you have strong solutions in place for authentication, malware protection, and encryption. Do regular threat assessments to understand what’s out there and how you’ll respond. Only then should you start adding more advanced controls that help you fight even more threats.
Prevention is the best medicine
In a perfect world, you’d prevent attacks before they happen. So it’s worth spending the time to develop as many proactive controls as possible, for both desktop and mobile. For example, you can control admin privileges on mobile the same way you do on PC.
Balance proactive with reactive
But you’ll of course need to balance any proactive responses with reactive ones. Despite best efforts, breaches will happen. It’s become the reality of the world we live in. What matters more these days is how you respond to issues. Put monitoring and controls in place that help you detect and respond to breaches more quickly and effectively.
Explore ways to automate
This is an area in which automation and machine learning will start coming into play in a huge way. Gartner suggests that you start investing in adaptive security and analytics. For example, there are solutions that watch and track the behavior of people, applications, and systems. They build up a pattern of expected, normal behavior. Let’s say so-and-so employee always uses these applications and visits these websites. But then if the user starts doing something out of the ordinary—like uploading files to a third-party server—the system would let you know immediately. Or you could even choose to have the system block the user from doing anything else until you have a chance to check it out.
How we can help
Security is at the heart of everything we do here at Binary Tree. We help you transform your messaging, directories, and applications to take advantage of modern platforms that give you better control over your security, like the Microsoft cloud. And we’ve built security into our migration products from the ground up, which keeps your data secure on its journey. To learn more, get in touch. We look forward to hearing from you.