Managing a vast array of security tools can be problematic for CISOs and their security teams. Antonio Sanchez joined the CyberWire Podcast to discuss these complexities and ways CISOs can reduce this operational burden.
Originally published in CyberWire Daily Podcast.
“Tool complexity is one of the top issues we hear from the CISOs. They get into this predicament because every couple of years, there is a new attack vector or a new vector out there that wasn’t used before and now is being used. Whenever something new is being leveraged by the IT industry, criminal actors typically leverage the new technology or innovation for their own nefarious purposes.
The cloud is a great example of that. Once upon a time, the world was entirely on-premise. You had your servers in a server closet and your storage space in a storage closet. With the rise of the cloud over the past several years, a lot of your data doesn’t live inside your four walls. It lives in somebody else’s four walls. It is a new footprint available not only for the IT industry but also for criminal actors. So, for every innovation, there is a new attack vector. For every attack vector, there is a new tool. With every tool an organization purchases to address that new attack vector, they end up with tons of tools. Bigger organizations usually have more in-house tools. And somebody needs to make all that stuff work together.”
Listen to the full episode here.