Digital transformation offers a powerful opportunity to harness the power of data. However, it also highlights some challenges, including an organization’s ability to be secure and resilient.

Isil Hasdemir, Country Manager of Dell Technologies Turkey He says that hyper-distributed environments are a good example of the new business model: “If not properly protected, these environments can present many new areas of attack and vulnerabilities. 60 percent of companies from Turkey that participated in Sophos’ State of Ransomware 2022 survey were exposed to ransomware attacks last year. 47 percent of companies whose data was encrypted as a result of the attack preferred to pay a ransom to avoid disrupting their business.”

recalling that cybercriminals continue to improve their ability to exploit vulnerabilities over time, Hasdemir“As more and more data and workloads are digitized, so does the surface area for attacks. As more systems rely on complex and integrated supply chains, they are also becoming more accessible targets. Obviously, we are seeing more investment in advanced threat prevention technology. According to the “Information and Communication Technologies Sector Market Data for 2021” report prepared by TUBISAD and Deloitte, global spending on information security and risk management will be $221 billion by 2025. “So now is the time to address security, risk and compliance gaps before they escalate.”

Need for a quick recovery strategy

HasdemirHe also points out that most organizations are unprepared when it comes to security. Support this assessment with Dell’s recent groundbreaking research Hasdemir“We see that 52 percent of employees say they have not increased their security, even after hearing about the ransomware attacks. While they have powerful threat mitigation tools in the event of environmental breaches, an attack can penetrate infrastructure and cause devastating damage. In this context, it is critical to draw attention to the four main security barriers seen in organizations.”

“First, there is a misconception that cyberattacks only target organizations or industries of a certain size. Organizations focus only on attack prevention and ignore their security planning. While it is important to be resilient to such attacks, organizations must act on the premise that an attack is imminent despite the best possible defense and have a rapid recovery strategy. Second, as digital transformation accelerates, many organizations are making rapid technological changes without regard for security considerations. However, in today’s data age, security transformation must be accompanied by digital transformation. Third, their security practices were put in place a long time ago and some were added later as new technologies developed. Security integration is often not considered until applications and processes have been developed, and the structure is then adapted to existing operations. Fourth, we can assume that security has too many silos. In other words, security is defined within the boundaries of different development teams, each made for their own narrow functional area, so there is no organization-wide compliance. Security should focus on detecting and minimizing threats in line with overall business objectives.”

Strengthen your security strategy

Claiming that securing data, applications, and devices requires a more mature approach that leverages innovative technologies for scaling and business intelligence, focuses on the business as a whole rather than threats, is proactive in recovery planning, and defends the organization as a whole rather than of silos. Hasdemiradvises organizations to consider three key elements to protect against and be resilient to cyberthreats:

1) Protect data and systems

Rethinking how you protect data and systems is the first step to strengthening your security with modern solutions. It requires a reliable infrastructure with a unique security approach. This means that the infrastructure is designed securely and poses no risk to your environment.

Security must be structured and built-in, and security applications must be architecture-specific designed to be protected as much as possible, rather than patched. Therefore, devices, firmware, and processes designed for security must be leveraged from the start.

2) Increase cyber resilience

A cyber-resilience approach shifts the focus from defense against attacks to being resistant to cyber-attacks, minimizing disruption and loss. It is necessary to know that resilience is not a technology, but a strategy or even an output. Think of it as a “state of readiness” to counter attacks from planning, technology and discipline, so that an organization knows exactly how to act when detecting a breach.

Therefore, threat minimization and resilience planning should be aligned and prioritized in line with core activities and services. Business continuity planning must go beyond solving conventional disasters and enable collaboration with IT teams and business stakeholders. Because cyber resilience is about deciding what really matters to your organization and focusing on the services you offer to the market you serve.

3) Overcome Security Complexity

The ultimate step in strengthening your security with modern solutions is overcoming security complexity. Digital transformation requires us to replace heavy manual practices with automation and insights that drive better business outcomes. With the acceleration of digital transformation and the combined workforce shortage caused by the pandemic, now is an ideal time to consolidate security tools and move towards automation, intelligence and consolidation that enable scalability.

According to ESG Research’s research, it is estimated that the annual cost of data loss for organizations struggling with these inefficiencies by leveraging a large number of providers will increase by a factor of 4. loss is a major problem for Turkey. According to Kaspersky data, the attacks causing data loss in Turkey increased by 79 percent in the second quarter of 2022, reaching 3 million 990 thousand 546.

It should be emphasized again here that consolidating tools from a number of vendors where possible will ease your environment and allow for more appropriate management/control, more predictable behavior, and more effective threat detection and mitigation.

As a result, modern security; It’s built-in, integrated, and context-driven. Building a solid understanding of security not only protects operations, but also helps drive successful business outcomes. Organizations will therefore benefit from modernizing their approach to cybersecurity and resilience. This allows them to effectively tackle risks and accelerate innovation.

Source: (BYZHA) – Beyaz News Agency