Security News > 2021 > September > Cybersecurity posture validation: Fireside chat with Arkadiy Goykhberg, CISO of DMGT

Recently I was fortunate enough to facilitate a fireside chat with Arkadiy Goykhberg, CISO of news media and business services giant DMGT. The challenge: Enterprise Drift due to Ongoing Threats.

Change in security posture grows daily as threat actors, whether financially motivated or nation-state actors, evolve their tactics, tools and Procedures.

From changes in routing configuration, firewall rules, group policies, proxy changes for URL whitelisting or SSL inspection, email domain whitelisting, to certificates expiring, and key processes dying due to software defects, these can potentially weaken enterprise cyber-resilience posture and security coverage gaps appear and expand over time.

Being a big believer in applying software development methodologies to managing complex architectures and cybersecurity, Arkadiy feels running continuous and automated regression testing was the best way to ensure efficacy of security controls is maintained over time.

The objective in looking at continuous security validation solutions was to get a clear baseline of DMGT security posture, to facilitate a fact-based risk management and cyber security investment strategy with executive management, as well as optimize security technology and operational processes with his staff.

Business impact: Arkadiy quickly understood his cybersecurity baseline, gained visibility, found gaps and misconfigurations in his security controls and processes.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/-_WZ6rBtxVQ/