Bitdefender’s Expert in Building a Resilient Enterprise Security Strategy

Companies are increasingly concerned about the future of their security strategy after the pandemic. Dan Pitman, Director of Product and Technical Marketing at Bitdefender, explains the importance of navigating new cybersecurity solutions with a growing hybrid and remote workforce.

Dan Pitman, Director of Product and Technical Marketing, Bitdefender.

Businesses are investing in improving their cybersecurity post-pandemic. Why ?

Companies have increased their investments in improving cybersecurity after the pandemic for many reasons. There’s the obvious – that’s where the complexity has gone beyond scale. As people transitioned to working from home, businesses needed to adopt a more digital way of working, not just with their employees, but also in their business practices. This required an increase in their speed of digital transformation and the digital transformation for their end users and within the organization itself. Complexity is therefore essential from a cybersecurity perspective, because complexity brings risks when thinking about cybersecurity. So if we have more devices, more network connections, or more users, that means there’s a higher risk because it’s harder to manage and understand all the different use cases that we could see.

How have organizations adapted to an increased need for a more robust security strategy following the acceptance of a hybrid work culture?

We’ve seen greater acceptance that businesses need a more in-depth cybersecurity solution; with this, the organizations wanted to expand their coverage to other areas. This can mean an increased level of detection on the endpoint, therefore more complex analyzes using machine learning, for example, but it can also mean more visibility and coverage, which are very important.

If you think about hybrid working, users are more likely to use different apps than before. Plus, they can move data around differently than before, so companies need to keep tabs on the systems they manage. As such, having consolidated threat detection across all of these areas has become a key objective for many businesses and we are certainly seeing this with our customer base looking to extend their coverage beyond the endpoint.

The other side of this is that when we think of these hybrid workers, they are connected to corporate networks through private internet service providers. This means companies need to understand not only the enterprise security landscape, but also the consumer security landscape. For me, working at Bitdefender is fun because we have both sides of the coin and we are able to understand that so that our professional cybersecurity solutions can learn from the consumer division.

Can you explain how companies can take a more preventative approach to cybersecurity?

Sometimes I like to start certain conversations with an empowering perspective that when we think about prevention versus detection and response, the only real difference is speed of response.

If we think about preventive controls and security, especially prevention from an endpoint perspective, then normally there will be a detection happening and we will stop the attack. An automated detection and response response helps people prevent attacks or potential security incidents from continuing. Then, when we move up the chain of cyber attacks, we focus on prevention and the early stages of an attack. We want to try to prevent the attack from starting in the first place, so we need to have a good risk analysis and a thorough understanding of the risks to our users and to our systems.

What are the consequences for organizations that do not invest more in threat prevention or detection response solutions?

From a business perspective, the impact can be either on reputation or on revenue. Either way, one will affect the other; for example, if you have a reputational impact, it will impact your revenue in the medium term. So here we can think of things in a slightly different way – so cyber resilience. I think it’s useful to talk about cyber resilience in this context because it’s all about one premise and you have to assume that at some point your systems are going to be hacked and figure out how to deal with it. This is useful because it means we are looking beyond prevention and detection.

We can think of resilience in many ways. Some people will talk about resilience as taking a punch, but I’d rather ask if you can weather the storm. In the event of a cybersecurity incident, this is a sustained activity that a company must undertake. You need good prevention and stop the attacks as well as possible. Additionally, you need reliable detection and response capabilities to protect things that your prevention software might miss. Finally, you need robust cybersecurity to be able to recover quickly. That’s why I think cyber resilience is a valuable term as a broader set of things beyond just cybersecurity. Ultimately, ensuring that cybersecurity is linked to all departments of a company and that employees can understand how they can strengthen their defenses and survive a cyber incident.

Why is unified endpoint security so important to businesses today?

I think unified endpoint security ties into what we’ve talked about so far, so be as comprehensive as possible in your approach to cybersecurity and have broad coverage in a hybrid world.

These days, it’s not just about having Endpoint Protection platforms in place, but also ensuring that you have smarter detection systems, the ability to react to an incident, and that your employees know what to do in the event of a security incident.

How does Bitdefender create enterprise security designed for resilience?

Bitdefender is focused on ensuring customers can use services and technology appropriately by having the basics right. Customers benefit from both risk analysis and endpoint protection by not only using traditional measures to detect malware and ransomware, but also by using smarter mechanisms.

With the offering of additional technologies, for example, new avenues for security teams to interrogate system-triggered events and extend that coverage to their network or internet cloud platform.

Customers without security teams can benefit from a managed detection and response service. Security operations center experts using the Bitdefender solution will use this telemetry and create tailor-made baselines for each customer, enabling the ability to process unique threat hunting and other detection measures. Bitdefender ensures that the choice is appropriate for the organization and offers the best chance of enabling its resilience.

What results can a Bitdefender organization/customer expect?

Our endpoint protection solution works exceptionally well. If we look at AV comparatives, we can detect some of the highest rates in the industry. So based on that, when thinking about getting rid of potential issues, customers can be sure that we will deliver a return on investment (ROI).

As we transitioned to services such as managed detection and response, customers expect – and continue to expect – our help to improve their security posture and maturity, for example by reviewing their environments and providing continuous advice to develop their defences.

Click below to share this article

Previous High-strength version of adalimumab biosimilar will be available in 2023
Next The benefits of ReactJS for mobile app development