The pace and complexity of cyber threats and attack vectors continuous to increase exponentially. Conventional thinking will soon be the biggest risk in Cyber Security!
There isn’t a day in which we do not learn about a new cyberthreat or attack, and with that we need to keep in mind that not all cyberthreats and attacks make it into the news. There are far more threats and attacks than we are aware of, so even our perception of a lot of attacks is just a subset of what really happens. Threat-actors are constantly increasing their skills to remain undetected, and root cause analyses of cyber incidents show that it can take several months or even more than a year until a breach is detected.
In that setting of advanced persistent threats and constantly evolving attack vectors, the conventional line of thinking which include “everything behind our lines of defense is safe” and models based on implicit trust from within the own infrastructure, is becoming the biggest risk organizations can take. Out with the old, in with the new. We must create policies and security measures based on the assumption that our infrastructure is already breached and defend ourselves against the threat from within. In case this sounds a lot like zero-trust: congratulations!
Dr. ir Johannes Drooghaag – CEO Spearhead Management