SOC 4.0 and Cybersecurity
With the advent of Big Data and its related analytical techniques, it is possible to use raw and/or unusable data sources, also by correlating information that is external to the IT world, considering it’s effect on business by providing results to the stakeholders.
In 2018, 90% of organizations feel vulnerable to insider attacks, both voluntarily and due to negligence, mainly related to the high number of privileged accesses given, unmonitored devices connected to the corporate network, and IT’s increasing complexity.
Often the data are not centralized in internal silos but reside in external environments: this implies that there is no longer a well defined, stationary perimeter, that clearly separates the company from the outside world.
“Product-based” Cybersecurity, built only on its technological part (DLP/AIM/PAM), is doomed to to fail, because it’s necessary to understand and integrate the business operation processes: therefor, to ensure that security becomes a company value, it is necessary to acquire an analytics engine that implements machine learning and neural networks predictive algorithms, in order to allow an advanced event correlation.