Cybersecurity leaders confronted some of the field’s most pressing issues Tuesday during a virtual think tank organized by Dell that informed stakeholders of key challenges and offered guidance on how to meet them.
“The Cyber Battlefront: Best Practices for Public and Private Sector” featured a diverse panel that comprised a wide range of view points, backgrounds and professions — including journalists, executives and public officials. They tackled how to best develop defensive and responsive strategies, but also how the pubic and private sectors should work together to defeat a common threat.
Government’s role debated
The latter session provoked a particularly intriguing discussion about what government could do to help the private industry see improvements in overall security. While some panel members argued that more regulation would only deepen the divide between the public and private sectors, others argued that some kind of minimum standard is needed.
Erin Jacobs, founding partner of service vendor Urbane Security, said the payment card industry has benefited from having clear direction relevant to the controls that need to be in place to ensure safe handling of cardholder information. Establishing such standards for other industries would “at least give us a framework and a starting ground” to address security gaps and improve the “hygiene of the network,” she said.
The challenge, however, lies in the frequently laborious policymaking process, raising questions as to whether rules would need changing before they even hit the books.
“The time associated with getting through the bureaucracy only means it’s lagged behind the cutting edge of what the adversary is already advancing so you can be induced into a false sense of security because of how painful it was to get the standard advanced,” cautioned John McClurg, the chief security officer at Dell.
Charles Kolodgy, vice president of security products at the market intelligence firm IDC, suggested a whole new mindset for the federal government — fewer sticks for offenders and more carrots for organizations that act responsibly. Some security breaches are caused when an employee inadvertently releases malware by clicking on a suspect link, he pointed out.
“Let’s have tax breaks or whatever else the government can do instead of punishing the breaches,” Kolodgy urged.
Think tank on demand
This back-and-forth represents just a snippet of what was discussed at the think tank. To watch certain sessions or the full day, point your web browser to the event page, where viewers can also leave remarks in the comments section.
A separate Dell event on building the electronic infrastructure needed to support personalized and genomic medicine will be broadcast online starting 10 a.m. EDT Friday.Tags: Security,Technology