Cyber security strategy is not just for defense ministries

Understanding how cyber attacks affect policies, industry and our business decisions is vital. Stonesoft works for more than 60 ministries around the world. We give face-to-face advice to national and business leaders, as well as technical consultation and solutions. Because Stonesoft is focused on network security and one security platform, we are able to pass on the benefits of our high end innovations for states and the military directly and quickly to enterprises.

We are blinded by the “illusion of security”. The industry is not helping with unrealistic 100% test results. Security is an afterthought in the way critical networks have been designed. While we wait for a major cyber disaster, we are missing the chance to create a safer and more efficient business environment.

In the future, as the digital and physical become even more interdependent, security must become first thought.

Our digital dependence breeds vulnerabilities that can be exploited by criminals, hackers, hacktivists, and well-resourced nations and non-state organizations.

Are out electricity and water bullet proof?

  • Web apps, web servers, back-end databases etc. all create vulnerabilities
  • Compromising e.g. peripheral sub-stations or valves can disable an entire system
  • 80% of US critical networks are private sector – profitability leads to vulnerabilities
  • Downtime is unacceptable – SCADA systems might go un-patched for long periods
  • BYOD trend and new network connections creates new security challenges

All systems are vulnerable to human actions, processes and tech failure. And most security is blind to attacks via AETs.
Critical systems must be robust in the face of motivated persistent hackers. And security must be able to cope with unknowns.
Resilience is the ability to withstand attacks or failures and re-establish quickly.

Key factors for nations and the military also apply to enterprises

  • Real-time situational awareness and leadership
  • Centralized management
  • Shared responsibilities
  • Agility and flexibility
  • The ability to manage unknowns
  • Efficient use of resources
  • Resilience