COVER STORY
Karim Abillama , SE Director , International Business at NetWitness
So , to address the crucial need for comprehensive visibility into hybrid work environments and growing Zero Trust as organisations increasingly embrace cloud infrastructure and Software-as-a-Service ( SaaS ) solutions , our commitment to evolving and expanding visibility remains unwavering . This expansion notably encompasses network visibility , a critical facet for SaaS infrastructure and cloud infrastructure service providers such as AWS , GCP or Azure . We have also announced earlier this year at the RSA Conference held in San Francisco , additional integrations with reputable SASE providers in the market .
What part does NetWitness play in enhancing organisations ’ security postures and defensive strategies ?
Defensive strategies have significantly evolved over the years . Instead of fixating solely on preventative controls and fortifying barriers , there ’ s a notable shift towards achieving a harmonious equilibrium between detection and prevention . This transformation has prompted organisations to delve deeper into the profound question of comprehending the intricacies of their operational environments . It ’ s an exploration into the realm of detecting patterns of unknown suspect behavior , the aspects that elude our grasp .
As far as NetWitness is concerned , we play a pivotal role as the linchpin of this protection strategy . Even in a landscape teeming with AI technologies promising substantial cybersecurity benefits , it ’ s essential to cut through the clamour of hype and empty assurances . The crux of the matter is deciphering what truly matters in the realms of network detection and safeguarding . Numerous organisations have placed their trust in NetWitness for decades , relying on its efficiency to stay at the forefront of the ever-evolving threat landscape .
Looking at your participation at Black Hat Europe 2023 in London , how will this be a boost to the NetWitness community and beyond ? What ’ s going to be your role at the NOC ?
Black Hat , one of the largest security conferences globally , commenced its journey in 1997 . Interestingly , this inception coincided with the birth of NetWitness and , over the years , the event has garnered the attention of a diverse security community ranging from threat researchers to security practitioners . We consider ourselves fortunate to have been selected among a handful of vendors entrusted with safeguarding the backbone infrastructure of Black Hat , known as the NOC .
Our role involves deploying our advanced technology to fortify the conference ’ s Wi-Fi environment . Significantly , a considerable amount of our time is dedicated to collaborating with expert threat hunters in deciphering ongoing security threats and devising strategies to protect critical infrastructure .
What are your predictions for 2024 and how is NetWitness working to stay ahead of the curve when it comes to tackling the evolving threat landscape ?
Nation-state-sponsored cyberattacks have seen a notable upsurge considering global geopolitical tensions . This trend is especially pronounced in regions like Ukraine and Russia , as well as the Middle East . The result has been a heightened level of coordination among these state-sponsored actors .
In recent years , there has been an intriguing and unprecedented collaboration among these groups . They are sharing their expertise , engaging in the exchange of ransomware kits and other forms of crimeware and demonstrating a new level of structural cooperation that was previously unseen . Sadly , this cooperative trend continues , accounting for the alarming increase in ransomware attacks that disrupt not only critical infrastructure but a wide range of industries .
From a NetWitness perspective , there is a dedicated effort to bolster our research capabilities . We are making substantial investments to ensure we have a team of top-tier threat researchers and their role extends beyond mere observation to actively contributing to enhance our product ’ s ability to counter sophisticated adversaries . This intelligence is a crucial component of our product suite and it is augmented by the integration of Machine Learning to alert on rogue and suspicious behaviour . u www . intelligentciso . com
53