Edge Ask the Experts

The Internet of Things needs to be part of the overall corporate information security policy to prevent adversaries from using these devices as an entry point.

If security leaders focus on visibility and metrics, they can demonstrate their programs' value to company leadership and boards.

Security has benefited from shifting many late-cycle disciplines left or earlier in the cycle.

As the first step, make sure that all business-critical data across your organization is protected.

To build or buy — that is the question. Security teams have to consider maintenance costs and compliance questions when they go down the build-it-yourself path.

Security teams must shift away from saying no, align security initiatives to business goals, and report metrics in a way business leaders can understand.

Trust, but verify. While organizations wait for official alerts and notifications from Okta, security teams should also begin their own investigations to determine whether they have been exposed.

As a curated knowledge base for adversary behavior, the MITRE ATT&CK framework can guide defenders on how to conduct an investigation and the order of things to look for.

Well ... it depends on what you're trying to accomplish, at least for now. The good news is that many modern SIEMs are starting to adopt XDR-like capabilities.

Most importantly, someone needs to step forward and take it on as their job.

While traditional security controls are necessary at the perimeter, organizations also need to prevent malicious privileged access.

A firewall is still a valuable part of the IT security stack, but businesses need to consider all of their attack surfaces.

Threat modeling should be a continuous process alongside development, not a one-time project.

Once attackers have obtained access, they can compromise other systems or pivot within your networks.

All the pen testing and tabletop exercises in the world won't help unless an organization has a complete and accurate understanding of its assets.