Intelligent CISO Issue 08 | Page 35

 PREDI C TI VE I NTEL L I GE NC E A well-crafted phish is an investment that pays big dividends. But so is an automated platform, fed by trained users and managed by experienced incident responders. security team used automation to identify the campaign quickly, then moved swiftly to block the phishing domain, before any users entered data. All of this happened in minutes. Before, it would have taken days, according to the SOC analyst who managed the response. But just imagine . . . Imagine if the healthcare company was still manually analysing emails. Nineteen minutes could have turned www.intelligentciso.com | Issue 08 into 19 hours or longer. As it was, even in 19 minutes plenty of users clicked. A well-crafted phish is an investment that pays big dividends. But so is an automated platform, fed by trained users and managed by experienced incident responders. And consider if the security team at the financial services company still slogged through hundreds or thousands of emails by hand. Or relied on Outlook, whose many strengths do not include incident response. This company too would likely have wasted hours or days examining the wrong messages. All the while employees, at least some of them, would have handed criminals the keys to their personal kingdoms. No one has time to waste while phishing emails are on the loose. So automate to save time and let humans save the day. It’s the best way to stop active threats before they make trouble, including the kind of headlines no company wants to see. u 35