The more data a company has, the harder it is to secure and the greater the potential risk of a security breach, writes AJ Thompson, pictured, CCO of the IT consultancy firm Northdoor plc.
The last few years has seen both an explosion in the amount of data companies are collecting and also an increase in the level of public understanding about the value and vulnerability of their data.
According to the Dell Global Data Protection Index, from September 2021 surveyed 1,000 IT decision makers from around the world found that companies are on average managing ten times more data than they did in 2016. This is a huge increase in the amount of information entering companies. This offers opportunities to gain real insight into customers and business practices, which enables and companies to have a proper understanding of how data can play an important role in future growth. However, the more data you have the more complicated it is to store, protect and use. For example:
Cost: the more data you have, the more it costs to store and so finding the right storage option is critical to optimise budgets
Reduced effectiveness: When a company has a large amount of data it becomes much harder to process and identify the key data that might result on growth
Compliance: More data doesn’t necessarily equate to more insight, and actually the ‘keep everything’ approach that many companies have followed now violates some of the new data regulations. With data protection agencies now fully enforcing GDPR with huge fines, companies have to be aware of what data they have, where it sits and how they use it
Security: Finally, the more data a company has, the more difficult it is to secure and the greater the potential risk of a security breach
Cyber criminals are finding increasingly sophisticated ways of gaining access to this data, selling it or holding it to ransom. This obviously causes considerable problems for companies who suffer data loss, damage to their reputation and potentially huge regulatory fines. With so much more data residing within companies and cyber criminals determined and increasingly able to steal it, Dell’s Global Protection Index highlighted a disturbing admission from a majority of the companies it spoke to.
-62 percent fear that their existing data protection measures may not be sufficient to cope with cyber threats, and
-74 percent agreeing that the increase in employees working from home had increased their exposure to data loss.
These stats highlight what we have seen over the past few months. As cyber-crime has increased in regularity and sophistication, most businesses have been unable to keep up and as a result there has been a significant increase in successful attacks.
Another significant finding was that 82 percent of organisations believe that their existing data protection measures won’t be able to meet all future business needs. Whilst it is good that companies are recognising that they cannot stay still with their data protection, it seems that most don’t know where to turn next to resolve the issue.
It could be that they are looking for the wrong solutions, focusing just on traditional cyber defences. Cyber defence tends to be one step behind the cyber-criminal. No matter how high you build your defensive walls cyber criminals will always find a way over the top to get at your data. Indeed, cyber-criminals are not just looking to get over the top of cyber defences, but through the backdoor. The last two years has seen a real increase in the number of attacks on organisations that have not originated with the organisation itself, but one of their partners. Attacks through the supply chain is an increasingly popular route for cyber-criminals which means companies need to get a 360-degree view of potential vulnerabilities across their network.
Whilst it’s important to have defences in place, looking at ways of protecting data that sit alongside cyber defence will be key for those worrying about future business needs.
Cyber resilience, not just defence
Increasing your levels of cyber resilience will be critical in securing data. The connectivity of modern systems means that once criminals have gained access to them, they are able to access vast amounts of data relatively easily. This often includes any data that a company has backed up immediately rendering any disaster recovery plans are immediately negated.
The key then, is to backup data in a completely separated system, meaning that if a cyber-criminal does gain access, backup data is safe. This is where air gaps play a critical role. Placing data in systems, that are completely separated from the rest of the infrastructure, means that it is impossible for cyber-criminals to get their hands on it.
This level of cyber resilience means that data is in a fully isolated, highly secure and air gapped vault. Even if the worst happens and a breach impacts a company and its data backups, criminals are unable to get hold of the air gapped data and advanced workflows and tools will enable companies to recover quickly and securely.
Resilience through zero-trust
Another aspect of increasing cyber resilience within organisations is implementing a zero-trust approach. It is a security framework that requires all users (whether they are in or outside an organisation’s network) to be continually authenticated, authorised and validated before they are allowed near or access to data.
By taking a zero-trust approach, companies can be sure that some of the most sophisticated methods cyber-criminals are now using can be successfully identified and dealt with. It means that employees are constantly on the lookout for suspicious activity and ensures that a culture of good cyber security practice is implemented throughout a business.
This approach means that cyber-criminals don’t just have to get through the cyber defences but also a human wall and technology that are both running a zero-trust policy. By taking tis holistic approach to cyber security companies are able to apply layered security to every user, device, application, data base and access point. It also provides a clear view of present and future risk, often using Artificial Intelligence (AI) to triage threats.
Perhaps most importantly, it does all of this whilst balancing risk and productivity. It allows a company to continue operating, but wraps layered proactive AI-powered security around every user and every element inside its infrastructure.
It is clear that cyber-criminals are increasing the regularity and levels of sophistication of their attacks. Companies are aware of the increased threat but have reached a point when continuous spending on cyber defences, although important, no longer keeps criminals at bay. The definition of insanity is doing the same thing over and over again and expecting a different result – therefore finding new ways of protecting data and making it harder for the cyber-criminal to gain access to it is crucial.
Increased cyber resilience with air gap, siloed backups along with a zero-trust approach will help companies increase their security, protect their data and have a more future proofed solution in place to deal with an ever increasing threat.
