Every Solution You Can Imagine – and More
What cybersecurity solution do you need? From Zero Trust to ADR, IAM, risk/privacy, data protection, AppSec and threat, securing digital transformation, to resiliency and remediation, we can build the right program to help solve your challenges.
A Single Partner for Everything You Need
Optiv works with more than 400 world-class security technology partners. By putting you at the center of our unmatched ecosystem of people, products, partners and programs, we accelerate business progress like no other company can.
We Are Optiv
Greatness is every team working toward a common goal. Winning in spite of cyber threats and overcoming challenges in spite of them. It’s building for a future that only you can create or simply coming home in time for dinner.
However you define greatness, Optiv is in your corner. We manage cyber risk so you can secure your full potential.
Personal Security Habits – Looking Inward
I mentioned to a few industry colleagues that I’m taking some security awareness training and was met with a round of snickers and snark. In my peer group this is typical. However, reflecting on my 23+ years of IT and security experience, I know better than to believe anyone is so good at their job they don’t need an occasional security awareness best practices refresher. I’ve seen some serious cybersecurity breaches as a result of “simple slips” – from receptionists to managers to the C-Level.
Here are some examples:
While phishing remains the most widely exploited threat vector for cybercriminals, the scenarios above illustrate that email security is only one layer of an organization’s security posture.
A friend in the IT industry recently told me he was having to fix more than 200 computers due to a massive ransomware attack on a company he was supporting. On site, he saw passwords taped to screens, found confidential documents left out on desks and passed several unlocked, unattended computers. The company paid a huge price for its lax attitude toward cybersecurity.
Every individual’s awareness and behavior contribute to an organization’s security. While routine awareness training may seem remedial to many of us, the truth is you can’t just rely on common, established behaviors or common sense. Threat actors understand these behaviors and that’s what they’re counting on. Instead, we need to examine our roles and look to focusing, even refocusing, on training for our specific roles and security responsibilities. This renewed inward focus can help determine what aspects of security each of us is overlooking in our work and personal lives.
Some quick examples:
It’s important to remember there are lots of tricks in the attacker’s toolbox, including social engineering, physical attacks on people and property and theft of intellectual property through data mining and data exfiltration. These “mistakes” can result from “loose code” and “bad decisions” and frequently mean significant financial losses (or worse).
After thinking about all this I headed back to my security training with a fresh perspective. What were my bad habits? What assumptions was I making and were they valid? And what example should I be setting for my coworkers?
The answer was startling, because I realized how lax I’d become through the years, which took me back to my initial reaction: Can anyone afford to think they’re so good they don’t need to consider their cybersecurity habits?
October is National Cybersecurity Awareness Month, and all of us at Optiv encourage you to think about your awareness levels and behaviors. No matter how great a job you’ve been doing, a little brush-up can only benefit you and your organization. We’ve put together a suite of resources to help promote better cybersecurity practices and you’re invited to download it free and share it around.
Let us know what you need, and we will have an Optiv professional contact you shortly.