While some management teams are afraid of a pentest or risk assessment, other organizations particularly financial institutions are well aware of their security risks. They are addressing these risks by simulating fake cyberattacks. By putting IT, managers, board members and executives who would be responsible for responding to a real breach or attack, they are learning how to respond to press, regulators, law enforcement, as well as other scenarios they might not otherwise expect.
However, other security experts would argue that cyber war rooms are financially prohibitive for most organizations with a limited budget. What’s more, organizations should keep in mind that not all attacks have to be complicated. If organizations curb phishing attacks or achieve a least privilege model, they would already significantly reduce their risk.
Other Articles Discussed: Dark web marketplaces AlphaBay and Hansa shut down Every voting machine gets hacked at DEF CON Real life Minority Report German judge rule that keylogging employees is illegalTool of the week: Reply All Podcast: Long Distance
Panelists:Mike Buckbee, Kris Keyser, Kilian Englert