Strengthening cybersecurity with a 'zero-trust' approach
Threat Hunting, a strategy for investigating potential threats before they cause harm, is drawing the attention of CISO’s and security experts across the world, and for good reason.
During the second edition of the Panda Security Summit 2019, held in Madrid, Spain in May 2019, expert speakers from the telecoms, banking and cybersecurity industries expressed the importance of proactive cybersecurity approaches such as Threat Hunting.
Curro Márquez and Jesús Ponce from Cyber Intelligence at Telefonica explained that cyber intelligence should be considered a pillar of digital security for its holistic approach encompassing prediction, prevention, detection and response to threats.
A stance to which many of the speakers agreed, Lucas Varela, e-Crime & Security Analytics Manager at Caixa Bank, said that financial institutions should be looking to intelligence systems to investigate and detect threats, particularly banking trojans.
Adoption of advanced EDR technology
Over the course of PASS2019, the evasive behaviour of cybercriminals presented as a key concern for organisations. With experts discussing the importance of the adoption of advanced EDR (Endpoint Detection and Response) technology to ensure that even malware hidden in legitimate programmes is detected and blocked.
Integrating advanced EDR technology and tools like machine learning and automation can give an organisation invaluable insight into user behaviour, risk behaviour and security event data that result in a robust cybersecurity status. Senior Director Analyst at Gartner, Pere Shoard emphasised the importance of behavioural analysis when it comes to efficient threat hunting strategies.
Closing off the conference, Pedro Uría, director of PandaLabs, concluded that malware is no longer the problem – “the challenge lies in increasingly sophisticated targeted attacks that don’t employ malware – therefore the only valid approach is to adopt a ‘zero-trust’ policy, whereby only trusted processes are allowed to run”, said Uría.
Jose Sancho, president of Panda Security mirrored Uría’s sentiment on the value conference adding that he believes Panda Security is well aligned to take on the challenges we face today. The global cybersecurity company grew 12% in 2018 and introduced new business unit – Cytomic, at the conference in May 2019. This new addition is directly focused on providing additional layers of service to large organisations, with a combination of technology and services tailored for enterprise customers.