Threat Detection Evolution: What Practitioners Need to Know

by Securosis Oct. 1, 2017 via Infosecwriters

Prevention isn’t enough, whether you deploy it on the network or endpoints or both. It’s not clear that it ever was, but there is additional proof every day that adversaries cannot be reliably stopped. We see the beginning of the long-awaited shift of focus and funding, from prevention to detection and investigation. But security practitioners have been trying to make sense of security data for years to shorten the window between compromise and detection… largely unsuccessfully.

http://www.infosecwriters.com/Papers/Securosis_ThreatDetectionEvolution.pdf

Avatar
ariadnalunguco 4 days, 8 hours ago

I wonder if companies are aware of this aspect, because as far as I know lots of them still don't realize prevention isn't enough.

Reply