Active Threat Management Requires New Tools and Skills
- Modern multi-vector threats are specifically designed to bypass traditional defenses, necessitating more aggressive threat-hunting strategies.
- Active threat management must be a continuous activity because of ever-changing network environments and the constantly shifting threat landscape.
“Having the proper tools is important, because without the tools, you’re not going to have the visibility.”
One of the most compelling reasons for adopting a more active approach to threat management is that attacks have become far too sophisticated for traditional “set and forget” perimeter and endpoint defense strategies. “Traditional antivirus, and to some degree firewalls, work using known parameters or signatures. They are not as effective against attacks that have never been seen before. Traditional antivirus solutions can’t react quickly enough against new variants or threats,” says Jason Kinder, director of corporate security at Leonardo DRS.