GO PHISH
especially when it can result in a direct impact on human safety and well-being .
How do you deal with stress and unwind outside the office ?
I enjoy doing anything outdoors and typically love to travel . My salvation over the past few years has been my dog , who was a constant reminder to get away from my screen and revisit the world around me .
If you could go back and change one career decision , what would it be ?
I should have had better diligence about a company , its viability and the leadership before working there . I also should have moved on faster , once I realised that it was not a great match . Changing jobs quickly can be a difficult choice , but when you know you ’ re not in a good environment , you should make that decision to change .
Harmful environments and employers can often have a huge impact on mental health , which can have longer and deeper implications .
What do you currently identify as the major areas of investment in the cybersecurity industry ?
Right at the top of priorities is identity security . There is currently a significant amount of investment in identity access management , with a lot of focus falling on provisioning , connecting and controlling it . There has not been the investment needed in identity security , which focuses more on visibility to identity-related exposures and detection of attacks leveraging credentials and privileges .
Further , ransomware pay-outs are greatly increasing and becoming more common . It ’ s now reached the point
that insurance companies will refuse to pay out if organisations are not taking the appropriate protection measures in the first place .
Are there any differences in the way cybersecurity challenges need to be tackled in the different regions ?
Certain markets have attracted more negative attention than others . However , attacker attention is becoming more universal with cybercriminals turning to wherever they can gain access to highvalue assets .
The UK needs to be as prepared as the US or Australia , regardless of the industry in which they operate . Attackers will always follow the money . So , it ’ s become more a case of which industry or organisation has the biggest prize pot and the weakest defences to get to it .
What changes to your job role have you seen in the last year and how do you see these developing in the next 12 months ?
The role has evolved with the growth of the company . Attivo has grown from only selling cyberdeception technology for lateral movement detection to also selling identity security solutions .
It is a natural progression of defences since security teams need visibility and detection into how attackers misuse credentials , elevate privileges and move laterally .
This change has driven work in company rebranding and repositioning so that Attivo is recognised for its leadership in both deception-based detection and identity security markets . We have also seen tremendous global expansion , which has created new activities to support global expansion , demand generation and brand leadership recognition .
The other change has been related to the slow restoration of face-to-face events . This has created an opportunity for limited but direct engagement with prospects and customers .
At the end of the next 12 months , I ’ d like to see identity detection and response become an established category with its place firmly established within the security stack .
It ’ s off to a good start , based on the survey findings from research by Enterprise Management Associates ( EMA ), which found that 27 % of respondents are already using IDR for combatting advanced attacks such as ransomware 2.0 . u
72 www . intelligentciso . com