With more and more of our interactions and transactions now taking place online, it’s no surprise that cyber-crime is growing by the day. Opportunistic hackers will seek any opportunity to infiltrate your company’s network and access its sensitive information – and the methods employed to do so are evolving and adapting all the time.
As awareness of the risks surrounding cyber-crime increases, many businesses are waking up to the urgent need to protect themselves online from malicious attackers. Enhanced employee training programmes and increased investment in software solutions can go some way to mitigating this threat, but without any way of quantifying your progress, it’s impossible to know how well your business’ online defences are holding up in the face of an ever-shifting threat landscape.
In this project, we were tasked with on-boarding a new customer to our Cyber Security Operations Centre (C-SOC). This would be “just another SOC paper” if it wasn’t for the fact that this particular Customer has an architecture that is exactly what we built the C-SOC for: they are almost exclusively an Azure Platform as a Service (PaaS) operation.
The server as we know it is a dying breed. With the advent of Amazon Web Services (AWS) Lambda in November 2015, and the raft of similar function-as-a-service (FaaS) platforms which followed it, more and more companies are choosing to migrate into the serverless world.
After all, the advantages in scalability, simplicity, and cost-effectiveness are enough to make the head spin and the heart sing – but what does the move mean for security?
It’s taken less than a decade for DevOps – the collection of practices focusing on quick, short-loop, lifecycle of development, collaboration, and delivery of working products – to make it from the drawing board to a mainstream business strategy practiced by the majority of UK companies today.
Last year, research showed that more than 70% of cyber-attacks were directed at SMEs, and that almost half of all small businesses reported a successful attempt to infiltrate their system. Most concerning of all, almost 60% of those SMEs which fell prey to an attack were forced to cease trading within six months of the incident. Clearly, cyber-security should be high on any business owner’s agenda – but it’s not. So, we must ask ourselves, why?