“Immediate responses to threats involve config changes, patch management, compensation controls, etc., which do not require immediate spending on new tools or capabilities,” he says. “That said, there should always be a percentage of the budget set aside for digital forensics and incident response, with the goal of going into cyber insurance for anything that exceeds that amount.”
“I worked with the CISO of a mid-sized financial services company, which faced a challenging situation when a new, sophisticated phishing campaign began targeting their industry,” said AJ Yawn, managing partner of product and innovation at Armanino.
This current threat requires significant resources to strengthen the company’s email security and employee training programs, he says. However, they were also in the midst of an important long-term project to implement a zero-trust architecture, which was critical to their overall security posture and future compliance requirements.
Source link