Does the term "novel attack" resonate with security teams? or does "unknown attack" resonate better? What would you consider novel/unknown attacks? Does your current threat detection solution detect novel/unknown attacks?

Security & GRCData Protection & EncryptionFirewall+9 more
4.1k views1 Upvote3 Comments
Sort By:
Oldest
CISO (CISO) in Healthcare and Biotech7 months ago
Novel attack certainly resonates more. Unknown attacks are only unknown until forensics figure it out.  A robust incident detection and response system (SIEM, UEBA, XDR) should be able to detect unusual activity and let your SOC investigate. them.
CISO in Software7 months ago
I always think of 0-day vulns and associated attacks as novel.
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
Director of Information Security in Services (non-Government)7 months ago
Novel attack resonates more. These attacks may include multiple stages and exploit vulnerabilities to perform an EDR bypass, C2, or ransomware. 

Content you might like

Which tech conference do you intend to attend in person next year or have already participated in this year, and what motivated your choice?

Applications & PlatformsCloudData & Analytics+15 more
Head of Enterprise Architecture MERCK Group in Healthcare and Biotecha year ago
Strategy & Architecture
Read More Comments
39k views5 Upvotes34 Comments

What is your primary deciding factor in adopting enterprise search?

Strategy & ArchitectureCloudEnd-User Services & Collaboration+26 more

TCO19%

Pricing26%

Integrations21%

Alignment with Cloud Provider7%

Security10%

Alignment with Existing IT Skills4%

Product / Feature Set7%

Vendor Relationship / Reputation

Other (comment)

View Results
5.7k views3 Upvotes1 Comment

What tools or frameworks have you used to visualize cybersecurity risks in a digestible way for the board?

Risk ManagementSecurity Strategy & RoadmapBoard Engagement
CIO in IT Services23 days ago
I used the NIST 800-53 Risk Management Framework. My program is wrapped around the framework, so that way they get to see risks on the registry. They understand the model for scoring risk, and then there's a decision factor ...read more
1
Read More Comments
188 views4 Comments

What's a greater concern for returning to the office? Comment how you are prioritizing...

People & LeadershipStrategy & ArchitectureCloud+29 more

Human Factors (fears, mental health, physical spacing)85%

Technical / IT Factors (on-premise tools, pivoting back away from remote)14%

3.7k views3 Upvotes2 Comments

We are a financial services corporation looking to engage a consulting firm/vendor to help us define our corporate cyberdefense strategy and organisation, and establish a 3-year roadmap to go from individual/ independent/ varied technology solutions to corporate services, including a corporate SOC. Who would you recommend for this engagement? If you have gone through a similar journey, could you share your learnings?

Vendor/Product RecommendationFeedbackSecurity & GRC+1 more
CISO/CPO & Adjunct Law Professor in Finance (non-banking)a month ago
I don’t have an answer, but I have a question that may be helpful.  Do you have a business/product roadmap for the target timeframe?

The technology plan and associated cybersecurity program should support  business ...read more
413 views1 Comment