Blogs

Cyber threat analysis: Countering cyber criminals breaching your defenses

Market Segment Manager, IBM

http://www.ibmbigdatahub.com/sites/default/files/cyberanalysis_blog.jpg
Cyber criminals have become sophisticated, agile and aggressive—sometimes too much for traditional security measures to protect against. Indeed, one need look no farther than the nearest news source to find data breaches in the headlines.

With increasing reliance on the Internet of Things, the costs of successful attacks grow. Loss of confidential or proprietary data can have grave consequences for not only organizations, but also nations—consequences that can include everything from direct financial loss to brand damage. One study estimated that the average organization faces 1,400 cyber attacks each week. Worse, the average data breach goes undetected for 229 days. Indeed, in the US, data breaches cost organizations an average of $11 million.

Breaches have become increasingly common for several reasons, especially because of the prevalence of asymmetric threats, the commoditization of attacks and the adoption of incomplete security strategies. Though dissuading a determined criminal from carrying out an attack may be difficult, cyber threat analysis can help any organization address an incomplete security strategy.

Cyber threat analysis is a new security practice in which organizations incorporate an additional level of human led analysis into their strategy. By analyzing a variety of data sources, including external and internal ones, organizations can understand their threat landscape comprehensively and contextually. Defense and national security organizations have been practicing similar intelligence processes for years to help combat both physical and cyber threats because it enables organizations to go beyond the event of a breach or attack, and uncover valuable insights about the threat actors, and their motivations. As these insights are uncovered, organizations begin to build contextual intelligence about their threats, intelligence that can then be used to proactively strengthen and fortify their existing security measures.

Using solutions such as IBM i2 Enterprise Insight Analysis, organizations’ threat intelligence teams can arrive at insights that help them quickly counter or mitigate threats. For instance, multidimensional visual analysis of a variety of data sets can reveal a seemingly isolated anomalous event as one of many similar events, indicating a malicious pattern. In addition, by enabling organizations to analyze disparate data sets—including third-party data sets, human resources data and even blacklist data—i2 Enterprise Insight Analysis can help organizations connect threats with the individuals or networks that lie behind them. Doing so provides the insight necessary to bolster security measures, as well as to counter and mitigate future attacks.

Don’t let cyber criminals breach your defenses and exploit your data. Use IBM i2 Enterprise Insight Analysis to proactively identify your threats, helping protect your organization.