SECurity FUNdamentals

Can massive data harvesting drive down the time to breach detection?


Security Fundamentals (803) October 18, 2016 1:25 pm - 2:25 pm Feedback   

Bookmark and Share

Sean Earhard

With the time to breach detection remaining at 100-200 days and the 100’s of millions of dollars that will be lost to ransomware this year, it is safe to say that modern, relentless attackers have revealed a fundamental flaw in the traditional layered defense model. Any individual layer, when it receives updated security intelligence, does not look backward at previously analyzed traffic, files or events. It merely looks forward, more accurately inspecting new events.

In this interactive discussion we will review time to detection data from 2014 to today and examine the role massive data harvesting plays in fixing the traditional model including:

  • Using massive data harvesting to create an up-to-the-second model of the history of the environment, from network communication down to process events.
  • Leveraging big data analytics to continuously analyze that history of the environment, uncovering weak signals and exposing the entire attack chain.
  • How data harvesting and big data analytics has been used to significantly decrease time to detection.