Echoing Namboka, Evan Dumas, Head of Emerging Technologies, Asia Pacific, Middle East and Africa of Check Point Software Technologies, agreed that the threat landscape has evolved to the extent that is impossible to predict with certainty what the next waves of malware will look like. "We need to think like an attacker and understand what they are going to do in order to craft a defense strategy," advised Dumas. In order to craft an effective security strategy, it is imperative to make every effort to prevent attacks. Thereafter, one should work on detecting and containing attacks as soon as possible because the timing is critical. "The longer an attack goes undetected, the more time it takes to contain it; and the more it will cost," he said. Lastly, one should effectively respond and remediate to address the business impact and to ensure that the infection does not reoccur.
The session wrapped up with a panel discussion, in which Namboka first shared about the partnership between Dimension Data, A.S.O., and the Tour de France, and how it resulted in increased intruder activity. Dumas said that it is healthy to adopt a mindset that you've already been breached so you continuously scan to detect threats. He added that security assessments or check-ups are essential because understanding the risk of the business can help you to better improve on it and engage with relevant vendors in order to progress. He then concluded that there is no silver bullet to security and that there is no "shiny toy" that can fix everything. It is therefore critical to adopt a lifecycle defence strategy that looks at security in all aspects: detect and protect, analyse and mitigate, and investigate and remediate.
Sign up for CIO Asia eNewsletters.