Security 500 conference     

 Don’t miss the networking event of the year for security executives!
Register today for the Security 500 Conference.

Security Newswire

From RSA: Big Data is a Transformative Solution to Security Challenges

February 26, 2013
/ Print / Reprints /
ShareMore
/ Text Size+

In his opening keynote at RSA Conference 2013, Art Coviello,Executive Vice President of EMC Corporationand Executive Chairman of RSA, The Security Division of EMC® addressed a crowd about the ways that Big Data is transforming the security industry, information technology, business and society.

Specifically, Coviello articulated how an intelligence-driven security strategy that uses powerful Big Data analytics will help security practitioners regain the advantages of vigilance and time to better detect and defend against advanced threats.

Coviello noted the sheer amount of unstructured data being mined and the richness and variability of that data provides great opportunities for business and society, while that same data also provides new attack vectors for adversaries.

“But, new tools and techniques are coming online to analyze all of this data. It won’t be long before Big Data applications and stores become the ‘crown jewels’ of an organization. . .  And those crown jewels will be readily accessible in the cloud and via mobile devices across our hyper-connected enterprises –and not just by us, but by our adversaries as well.”

Coviello also called for a more realistic level of understanding when it comes to the escalation of threats. “Having the right level of understanding is key, because if we, as an industry, overhype this situation, organizations won’t take the necessary measures to prepare themselves.”

Coviello put forward that organizations can no longer afford to remain idle when it comes to updating their security measures and must be willing to take action to adopt an intelligence-driven security model to better defend against unknown threats.  The security industry, he said, must also develop an adaptive capacity built on security analytics, risk-based controls and multiple sources of threat intelligence to help security organizations more rapidly identify and respond to threats.  Coviello articulated his vision for an intelligence-driven security model enabled by Big Data that can be applied in two ways:

  • Security Management for Big Data–Despite today’s compute power, bandwidth, database management and storage capacity, organizations will still require all data sets to be analyzed so that they can gain better visibility into a wide variety of contextual data, structured and unstructured, internal and external. Organizations will need to have the right level of context to build specific information about digital assets, users and systems.  Big Data architectures can and should be scalable enough to meet each organization’s unique requirements. Organizations will then be able to spot and correlate abnormal behavior in people, transactions and the flow and use of data to identify potential attacks and fraud. 

 

  • Development and application of controls for Big Data –Organizations will need to subscribe to a more holistic approach for implementing individual Big Data controls by replacing isolated controls that are task-specific, such as malware blocking.  Individual controls should evolve to interact with intelligence feeds, risk and compliance platforms, security management systems, and each other making them more dynamic and situationally aware.  Other task-specific Big Data controls should have the capacity to be self-learning.

 

Referring to RSA’s recent Big Data Security Brief,Coviello highlighted the six guiding principles that can help organizations begin planning for the Big Data-driven transformation of their security toolsets and operations as part of an intelligence-driven security program. Read more here: http://www.emc.com/collateral/industry-overview/big-data-fuels-intelligence-driven-security-io.pdf

Did you enjoy this article? Click here to subscribe to Security Magazine. 

You must login or register in order to post a comment.

Multimedia

Videos

Image Galleries

ASIS 2013 Product Preview

ASIS International 59th Annual Seminar and Exhibits, September 24-27 in Chicago, Illinois, will include an exhibit hall packed with innovative security solutions. Here are some of the products that will be shown at ASIS this year.

Podcasts

Virtualization and Data Center Security: What You Need to Know for 2014

Data centers are increasingly becoming the center of the enterprise, and data center and cyber security is following the same path for security departments. According to Justin Flynn, a consultant at the Burwood Group, the virtualization of data centers allows enterprises to scale more easily and faster, with a smaller footprint.

However, hosting enterprise data in the cloud can make intrusion detection more difficult – how can enterprise security leaders team up with other departments to keep aware of cyber risks and traffic, and physical and data compliance during the virtual transition? How can CISOs and CSOs discuss cyber threats with the C-Suite to get the resources they need? And how can the proper infrastructure test and verify possible malicious attacks? 

More Podcasts

Security Magazine

Security Magazine 2014 September cover

2014 October

Security takes a look at safety and preparedness for the harshest of weather phenomena in this October 2014 edition of the magazine. Also, we investigate supply chain security and the many benefits of PSIM. 

Table Of Contents Subscribe

Travel & the Ebola Risk

Are you and your enterprise restricting travel due to Ebola risks?
View Results Poll Archive

THE SECURITY STORE

comptiahighriseproductphoto
CompTIA Security+ Certification Study Guide
CompTIA's Security+ certification is a globally-recognized, vendor neutral exam that has helped over 60,000 IT professionals reach further and higher in their careers. The current Security+ exam (SY0-201) focuses more on being able to deal with security issues rather than just identifying them.
More Products

Clear Seas Research

Clear Seas ResearchWith access to over one million professionals and more than 60 industry-specific publications,Clear Seas Research offers relevant insights from those who know your industry best. Let us customize a market research solution that exceeds your marketing goals.

STAY CONNECTED

Facebook 40px 2-12-13 Twitter logo 40px 2-12-13  YouTube  LinkedIn logo 40px 2-12-13Google+

Vertical Sector Focus: Critical Infrastructures

criticalhomepagethumbFrom terrorism to vandalism, it’s preparedness, response, training and partnerships. Learn about some of the critical security issues facing this sector.

Visit the Critical Infrastructure page to read more.