The Cyber Defense eMagazine February Edition for 2024

More documents

Recommendations

Info

Organizational Cybersecurity Hinges on End- User Satisfaction The critical role end-user experience plays in organizational security By Amitabh Sinha, CEO and Co-Founder of Workspot In an era of sophisticated cyber-attacks, security leaders are feeling the pressure to fortify their infrastructure - deploying a variety of defenses including zero-day patches, security tools with frequent application updates, and more. However, as companies progressively implement layered security protocols to safeguard their systems, users have increasingly encountered friction in their day-to-day workflows. In fact, nearly 75% of CISOs say that employees within their business are frustrated with current security policies that are affecting their productivity. This growing user dissatisfaction can be even more costly to the security of an organization as workers will be increasingly reluctant to tolerate disruptive software updates, patches, and security protocols that impact workflow efficiency. It can also lead to greater personnel issues, affecting the critical business component of employee satisfaction and hindering enterprise productivity. So, how can security leaders find a balance between enhancing organization security and end-user satisfaction? Cyber Defense eMagazine – February 2024 Edition 100 Copyright © 2024, Cyber Defense Magazine. All rights reserved worldwide.
Let’s dive into how security leaders can ensure both the safety of their infrastructures and the satisfaction of their end-users through a modern cloud-native approach, including the implementation of modern VDI tools to help measure end-user experience and understand the impact of existing and planned security tools. Security vs. Satisfaction: Breaking Down the Dilemma Many essential, yet cumbersome, cybersecurity protocols can alienate an enterprise’s most critical asset: its employees. This clash between IT security's push to tighten defenses and employees' desire for a smooth digital experience creates a CISO vs. employee dilemma. This adds even more pressure on business leaders to optimize security processes. The reality is that the user friction caused by excessive security measures can backfire, potentially leading to costly security vulnerabilities and talent drain. As an example, employees will be much more reluctant to tolerate software updates or security measures - like using multi-factor authentication (MFA) or password managers - as they add time and effort to their day-to-day tasks. In this scenario, they may work around updates or delay necessary fixes so as to not disrupt workflow. What is even more concerning, users may also use their personal accounts to do work to avoid burdensome security measures. In the most extreme cases, some pockets of “shadow IT” may emerge with the most technically savvy employees. All in all, with lower end-user tolerance for updates and potential workarounds, organizations are more exposed to costly risks, including ransomware attacks or data leaks. Security leaders must also consider the integration of costly tools that overlap with one another or go unused, as this is another key challenge of integrating an increasing number of security measures. Overburdened by tool sprawl, CISOs can lose track or fall behind compliance of security assets, resulting in needless costs, and dragging down user and company efficiency. Lower end-user satisfaction ultimately leads to employee retention challenges as well – costing the enterprise time and money. In fact, as of 2023, the costs of turnover in a business for technical positions jumped to 100 to 150 percent of salary, impacting the business steps for onboarding and offboarding as well. Striking the Balance Between Security & Satisfaction To effectively balance end-user satisfaction and sufficient security protocols, organizations must adopt a pragmatic, holistic approach. Prioritizing user experience while maintaining seamless business operations and enterprise-wide security is paramount. This involves the critical element of assessing enduser experiences to comprehend the impact of existing and planned adoption of security tools. To achieve the monitorization and measurement of real-time and historical end-user experience, enterprises can turn to modern, cloud-native Virtual Desktop Infrastructure (VDI) capabilities. By opting for modern end-user computing solutions, organizations can swiftly pinpoint areas of employee dissatisfaction, observe trends in compliance with security protocols, and gain real-time end-user Cyber Defense eMagazine – February 2024 Edition 101 Copyright © 2024, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
How One Industry Exemplifies the Im
Page 3 and 4:
Data Breach Search Engines --------
Page 5 and 6:
@MILIEFSKY From the Publisher… De
Page 7 and 8:
Welcome to CDM’s February 2024 Is
Page 9 and 10:
Cyber Defense eMagazine - February
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
2001 2024 Cyber Defense eMagazine -
Page 17 and 18:
Page 19 and 20:
How One Industry Exemplifies the Im
Page 21 and 22:
That is where things stand in my in
Page 23 and 24:
current on the mission and values o
Page 25 and 26:
So, monitoring and managing vendor
Page 27 and 28:
About the Author Caroline McCaffery
Page 29 and 30:
How so? Businesses can make things
Page 31 and 32:
Using Cmmc 2.0 To Transform Your Cy
Page 33 and 34:
equire the implementation of additi
Page 35 and 36:
for the Department of Energy’s Cy
Page 37 and 38:
• IT no longer controls where and
Page 39 and 40:
For example, the Cloudbrink service
Page 41 and 42:
5 Cybersecurity Resolutions for The
Page 43 and 44:
The Importance of Cyber Hygiene for
Page 45 and 46:
The key steps to improve your cyber
Page 47 and 48:
Connecting Tech to Black America By
Page 49 and 50: Establish partnerships with HBCUs E
Page 51 and 52: Perhaps the most obvious example of
Page 53 and 54: Crafting AI’s Future: Decoding th
Page 55 and 56: The implementation of regulations c
Page 57 and 58: AI Is Revolutionizing Phishing for
Page 59 and 60: That’s why security awareness tra
Page 61 and 62: culmination of this race will revea
Page 63 and 64: Traditionally, DBSEs would only inf
Page 65 and 66: Enhancing Cybersecurity Defenses: T
Page 67 and 68: Social engineering testing In the e
Page 69 and 70: GitGuardian Researchers Find Thousa
Page 71 and 72: *Emergent trends While everything f
Page 73 and 74: There are multiple tools that will
Page 75 and 76: Good Security Is About Iteration, N
Page 77 and 78: to incorporate architectural and de
Page 79 and 80: Hacking and Cybersecurity Trends to
Page 81 and 82: detect attacks as they are occurrin
Page 83 and 84: Legacy solutions hinder an organiza
Page 85 and 86: About the Author Thomas Müller-Mar
Page 87 and 88: Having worked closely with financia
Page 89 and 90: device is emitting its signal the t
Page 91 and 92: Navigating the API Security Landsca
Page 93 and 94: that entities (users, services, or
Page 95 and 96: examine financial transactions, net
Page 97 and 98: Offensive Awakening: The 2024 Shift
Page 99: Not only are legislators pushing fo
Page 103 and 104: Overcoming Common Data Security Cha
Page 105 and 106: The Risks of Over-Privilege Alongsi
Page 107 and 108: Quishing Campaign Exploits Microsof
Page 109 and 110: After inserting their email address
Page 111 and 112: more expensive and time consuming.
Page 113 and 114: Cotton Sandstorm or Static Kitten h
Page 115 and 116: Spike in Layoffs Pose Serious Cyber
Page 117 and 118: About the Author Adam Gavish is the
Page 119 and 120: The Crucial Role of Data Categoriza
Page 121 and 122: The Next Generation of Endpoint Sec
Page 123 and 124: Next-Generation Endpoint Security:
Page 125 and 126: As I reflect back on the past few m
Page 127 and 128: Why Is Hardware More Secure than So
Page 129 and 130: can achieve throughput levels of up
Page 131 and 132: ecome more secure. By the end of 20
Page 133 and 134: Zero Trust Matures, Insider Threat
Page 135 and 136: of the risk of insider threats and
Page 137 and 138: Zero Trust: Navigating the Labyrint
Page 139 and 140: • Enhanced Security: Zero trust b
Page 141 and 142: Cyber Defense eMagazine - February
Page 149 and 150: CyberDefense.TV now has 200 hotseat
Page 151 and 152:
Books by our Publisher: Amazon.com:
Page 153 and 154:
Page 155:
i https://www.whitehouse.gov/briefi
show all

The Cyber Defense eMagazine February Edition for 2024

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?