Hello, and welcome to Casey plus today, I will talk about the top five C O topics for 2019, where to put your focus on in 2019. I think we all are aware of the fact that there is a lot of stuff going on in the cyber tag and cybersecurity space. So 29 19 will be another very interesting, very challenging year for every season for every chief information security officer. And I wanna touch the five areas where I believe most intentions should be spent. So if you need to focus and everyone needs to focus, then these are my five recommendations. And the main recommendation is go away from pure cybersecurity focus and look at what do you need to do to keep your business alive in a case of an attack? So this is going beyond the standard perspective of cybersecurity. In the sense of, I try to prevent attacks, I try to protect against it.
It's about understanding what is the impact on the business? What does it mean for a business? If you get attacked and what are the things that really can kill your business? How long can a bank survive? If the systems are really down, think about targeted long running attacks, attacks that might spread across the data centers, which truly might bring down all of your data centers so that the back data center doesn't help anymore. So what do you need to bring up first again? How do you keep your business running to survive? Whichever industry are in some industries are obviously more in danger. Others are less in danger, but this is an really important thing to think about it. This means you need to go into communication with business, to prepare for crisis communication, to prepare for recovery, to understand the full picture of resilience and crisis communication always means up to the board level, up to the black student communication.
So look at this, understand whether you, you are really prepared for a worst case scenario, because we will see a lot of attacks in 2019 again, and some of them might be really, really severe. So the second area, I think it's important is to think beyond the security operations center, in the sense of I analyze what is happening towards a cyber defense center. So defend yourself, look at resilience, look at how you really can counter so to speak attacks in the sense of, you know, what to do when something is happening. And that is something where, from my perspective, you will need support. You will need service providers manage services and you will need AI. So artificial intelligence. So you need to understand
Where is your CDC today? Do you really have something which is up to date? If you have it one at all? And if you have one, then it's the question. Is it more detection style saying analyzing all the stuff or it's really targeted on defense? Do you have the people who assist you in the critical scenarios, which assist you in understanding the complex attacks and do you use the modern technologies? So we see more and more, which goes well beyond the traditional, seeing the security information event management platforms towards what we could a cold call S I or security intelligence platforms. That is where AI comes into attack to detect anomalies, to detect the outliers, the critical situations to help you in better countering the attacks. So my area number three then is create a cross regulatory view, cross regulatory perspective. You have to deal with a lot of regulations.
There's GDPR. There is frequently from a, from a other perspective, ISO 27 1 1 0 0 1. There are so many other things and you need to look at so which regulations and frameworks are really relevant to you. So, which are the, the ma half things like the critical infrastructure regulations, like the data protection regulations, you must fulfill the other ones you should fulfill and the other could, and then you need to look at the controls. So which are overlapping, which are the, which is the set of controls you really need to, to have in place and try to standardize on that and try to minimize the effort in the sense of, you know, which is the real importance out of controls, which are overlapping, which map to which type of regulation and framework so that you on one hand can reduce the effort on the other hand, maximize compliance.
So go away from looking at regulation per regulation, per regulation, towards an approach, which really tries to create a combined view, maybe even foster that by some GRC tool, which works with your business GTC tools, which really maps to the enterprise risk. Another very important thing. And that's something I'm preaching quite a while now, look at your security tools landscape. So it's very typical for organizations that there are many, many different tools in place for many, many different providers. Yeah. There were new types of attacks, new types of threats and new tool came into place. And at the end, you have a Sue of different tools and that's where you should work on. So first understand which tools do you already have in place. Do you really know what you have? Do you have a blueprint which looks at, from a risk mitigation perspective on what are the tools which really
Help you in mitigating critical risks? So what are the ones which have the biggest impact? These are the most important ones, that ones that help you to protect against the big risk to help mitigate most of the risks, the biggest risk mitigation impact. And that also will help you learning whether you have everything you need, or whether there are major gaps, because there are major risks you haven't covered yet. So from there, you then can move forward and look at what is your optimized tooling that can help you save you money, but that particular helps you in streamlining and focusing your investments. So this is my number four. My number five finally is a very old one, a very traditional one, but still too frequently forgotten it is drain new people. They are still the weak link or at least one weak link. You have a lot of attacks, particularly targeted attacks.
Still start with socialing with using that weak link to attack your organization, to open the door. So you should have a continuous security training and awareness program at place, which helps your people understanding about attacks. And you also need to have something in place where you inform your workforce about new threats, about new things that are happening, new types of fishing and other types of mail. So how do this look like? Keep the people informed that helps you really in getting better? So these are very short, my five key areas where I recommend CSOs to focus on in 2019. Thank you.
