1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Why we need behavior-centric detection and response

Discussion in 'CSO' started by RSS, Oct 16, 2015.

  1. RSS

    RSS New Member Member

    According to the Verizon 2015 Data Breach Investigations Report (DBIR), 60 percent of the time, attackers were able to compromise an organization within minutes. Meanwhile, in more than 75 percent of the cases, the average time to discover breaches was measured in days. These findings indicate a growing “detection deficit” between attackers and defenders. Verizon sees this as one of the primary challenges to the security industry today and going forward.

    For incident responders, time spent in the same position, area, or stage of a process, such as the delta between when a compromise occurs and when it is discovered, is called dwell time. Reducing dwell time is critical to enabling successful prevention or resolution of a cyber incident.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page