Does anyone employ active threat countermeasures at your company and if so what do you use?

28.9k views6 Upvotes24 Comments

Sort By:

Oldest

Director of IT in Manufacturing6 years ago

Currently we employ the Velo from Windstream for our inter connectivity from office to office. We have Cyren and the cloud monitoring our traveling and off premise employees, we have Cylance as a AV engine as well as the Global install of McAfee which does little for us. We also have Cisco Firewalls in place both in data centers as well as between internal levels of the network. We have a SIEM system running and monitoring for windows file changes, and we have other software which assists us in our efforts.

Senior Director in Finance (non-banking)6 years ago

We are in the process of re-evaluating appropriate counter measures. If you are considering making changes, would recommend looking at Splunk and IBM products to begin with.

VP of Global IT and Cybersecurity in Manufacturing6 years ago

Would also recommend splunk, sumologic.

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

Peer Discussions and Polls
One-Minute Insights
Connect with like-minded individuals

Chief Security Officer in Software6 years ago

Thanks. We use Splunk and other security tools, but those aren’t active countermeasures. Active counter measures change and respond based on the attack, such as software defined network technologies that become tar pits for attackers by slowing down protocols or network devices/services that launch pre-canned responses to attacks (such as an attack itself).

in Finance (non-banking)6 years ago

Hello Lee, we are doing both Systems and physical security, I am trying to find an application to watch out team behavior throw our network and action taken.On the other hand we are trying to follow up for normal procedure and stick to it as bio-metric devices every where with 2 factors authentication with face detection , mandatory vacation and etc..how this help you.Thanks Ihab

Content you might like

What’s on your IAM roadmap for the next 18-24 months?

Identity & Access Management (IAM)Threat & Vulnerability Management Security Strategy & Roadmap

Director of IT in IT Services4 days ago

Implementation of Zero trust architecture, its modules across the organisation is a priority for us. So, we will be implementing zero trust strategies in IAM, inline with overall strategy.

1.4k views1 Comment

In the past 6 months, have you seen an uptick in targeted cyberattacks on telehealth devices and networks?

Security & GRC Network Threat & Vulnerability Management+2 more

No Increase16%

1-5% increase47%

6-25% increase24%

26-50% increase6%

51-75% increase1%

76%+1%

Other2%

View Results

1.7k views1 Upvote

Can anyone share recent or planned improvements when it comes to digital identity management? How are you optimizing those processes/tools?

Identity & Access Management (IAM)Threat & Vulnerability Management Security Strategy & Roadmap

Senior Solution Architect in Finance (non-banking)22 days ago

We've moved from an in-house system to one of the top 2 Digital Identity management solutions/suppliers, this was essential to keep up with the evolving digital identity management landscape.
What we've learned is that ...read more

Do you have any dedicated resources for vulnerability patching?

Threat & Vulnerability Management Security Strategy & Roadmap Team & Organizational Design

Yes - one person46%

Yes - multiple people46%

No7%

View Results

3.1k views

How are you assessing the security posture of third-party APIs the business relies on? What criteria do you use currently?

Threat & Vulnerability Management Third Party Risk Management (TPRM)Security Strategy & Roadmap

Director of IT in IT Services5 months ago

We evaluate third-party API security through comprehensive risk assessments, focusing on authentication protocols, data encryption, and vendor compliance.