Security solutions integrator Optiv Security recently announced a new suite of security solutions that will help organizations better understand their defenses and potential threats by looking at them through the eyes of an attacker.
The service is called EnemyPerspectives@Optiv and gives users an attacker’s perspective of the company’s overall security program, the company described in press release. This fresh perspective can potentially reveal gaps in security and discover attack patterns, which in today’s world of transforming businesses, is critical due to the wider attack surfaces available for attackers to exploit, said Chad Holmes, Optiv’s chief services and operations officer.
“The assumption that plug-and-play security technologies can thwart threat actors is only one piece of the puzzle. We need to turn things around – take a different perspective, the perspective of the attacker – in order to have a more complete view on the risks to our businesses,” he said in a statement. “The attacker sees things differently. They have a different purpose. They may look at part of an enterprise’s IT stack and instead of seeing protection, they see potential.”
EnemyPerspectives@Optiv focuses on three main categories – threat profiling, resiliency and incident response. These help companies move away from performing damage control to installing proactive defenses. Outside of the new service, an Optiv whitepaper lists Optiv’s top three recommendations for a proactive security program:
- Consider a zero-trust model and architect your environment with the assumption that end-user workstations are already compromised.
- Enable multi-factor authentication everywhere possible.
- Budget for recurring, and consistent, offensive cyber security evaluations to build a mature penetration testing program.