Fighting Ransomware With Continuous Monitoring and ResponsePanel Offers Insights on Best Ways to Detect, Protect and Respond
Organizations in all sectors need to build a continuous monitoring and response mechanism to defend against ransomware attacks, according to a panel of security experts from the Middle East.
See Also: Automating Security Operations
A key to defending against speedy attacks is to use automation tools, says Nahla AIBalushi, head of information security department, Central Bank of Oman.
Mike Loginov, founding partner at Digital Trust, Partners, a consortium of security practitioners, and former CISO and CDO at NEOM, a government organization from Riyadh, says it is important to consolidate various functions through information sharing, and building a collaborative framework combining InfoSec, data privacy, IAM and other teams, to defend ransomware threats.
“The SoC team plays a crucial role and needs to shift their tactics from incidence response to continuous monitoring and response, which is a game change in the prevention, containment, and root cause analysis of ransomware threats,” adds Heba M. AISawan, head, infrastructure, IT and security operations for the government of Kuwait.
This panel discussion was held at Information Security Media Group’s recent Cybersecurity Summit: Middle East.
In this video, the three experts address:
- The significant concerns about the new breed of ransomware attacks;
- Lessons learned from the adversaries and their tactics;
- Addressing the complexities of emerging technologies.
Nahla AlBalushi heads the information security management department at the Central Bank of Oman. She has more than 20 years of experience in the IT field. She began her career as a systems engineer at Petroleum Development of Oman LLC, where she worked on security-related projects. She then moved to the Central Bank of Oman as a senior information security officer.
Loginov is former executive director and CISO for NEOM who now serves as the founding partner at Digital Trust Partners, a consortium of security practitioners. Over the past 30 years, he has worked in senior executive roles in central government and on cybersecurity programs within policing and law enforcement. He is an experienced and certified CISO, CISM, and DPO.
AlSawan, head of the infrastructure, IT, and security operations for the government of Kuwait, has several certifications including MSCE+I, CCNA, and CISM.