Observed annually on the third Thursday of every quarter, ‘Get to Know Your Customer Day’ reminds businesses, large and small, to take the time to better understand their customers – in the world of technology, these are their ‘users’. Knowing the users is of critical importance in aiding providers to manage and mitigate risks such as data loss, fraud, viruses and malware, to keep their data, identity and networks safe.
On the first ‘Get to Know Your Customer Day of 2019, Intelligent CISO spoke with seven technology industry experts on the subject and here is what they said:
- Building consumer trust
Rupert Spiegelberg, CEO at IDnow
As we do more online, knowing your customers has become more important than ever before, particularly in the banking sector. Digital IDs are becoming the new currency, so companies need an easy, trusted and compliant way of finding out who their customers really are.
But with diverse, international customer bases, growing regulation and a whole host of other challenges to contend with, doing that is much easier said than done. Online identity verification is a growth market because, from a consumer perspective, it enables customers to ID themselves in a fast, convenient manner on the same device they will use to transact with a particular supplier and from a supplier perspective, it can satisfy local regulation requirements that the potential customer is who they say they are, as well as on-board new customers with ease and speed.
In short, knowing your customer technology is building consumer trust and helping make the connected world a safer place.
- Striking the right balance between security and user needs
Anurag Kahol, CTO at Bitglass
Mobility. Flexibility. Accessibility. These are some of the most important words that underpin the requirements of today’s workforce. Failure to provide a working environment that supports these requirements can mean the difference between attracting and retaining staff – or being left on the proverbial shelf. The mobile security challenges have been exacerbated in recent years by the rapid uptake of BYOD. These unmanaged or employee-owned devices require access to corporate data, but this increases the risk of sensitive data being leaked, especially if a device is lost or stolen. A further vulnerability is that BYOD devices represent a potential entry point for introducing viruses and malware to the rest of a corporate network.
When it comes to knowing their customers – in other words, their employer’s workforce – IT teams must address a real dilemma – how to strike a balance between the security needs of corporate data and how employees want to use corporate data. Developments in cloud-based security tools have given rise to a new set of mobile security solutions that means encryption of sensitive data can be extended to whichever popular cloud apps their customers are using – be that G Suite, Office 365, Slack or Salesforce, which means that data is secure regardless of what application a user is accessing via their personal device.
- Recognising and removing insider threats
Jan van Vliet, VP and GM EMEA at Digital Guardian
While living in an increasingly networked world has its advantages, it also leaves organisations vulnerable to exploitation by malware, inadvertent employee actions and malicious attacks. For security analysts, spotting security incidents arising from within their company, which is arguably their own customer base, is particularly tricky because the attacker may have legitimate access.
If the credentials being input are valid, the same alarms are not raised as when an unauthorised user attempts entry from the outside. Deploying data-aware cybersecurity solutions removes the risks around the insider threat because even if an adversary has legitimate access to data, they are prevented from copying, moving or deleting it. What’s important when it comes to insiders, in whatever guise, is to be able to detect malicious or suspicious activity and produce real-time, priority alerts that analysts know must be addressed immediately.
- Manage, monitor and configure capabilities
Todd Kelly, CSO at Cradlepoint
In order for industries to do more with their business and grow naturally, they have to embrace the cloud. Even with sensitive information on their applications and networks, enterprises can use the cloud without a great deal of risk. By utilising a cloud manager, businesses will be able to monitor and configure capabilities so that one person can manage the SD-WAN, IoT and 5G connectivity and keep users secure while using the network.
- Building a useful profile of user activity for greater depth and context
Nir Polak, CEO at Exabeam
Securing the network is fundamental to protecting the business and a variety of tools exist to understand traffic flow over a network and to analyse security impacts from that flow. However, despite the capabilities of these tools, attacks and breaches continue to happen. It is time to expand the definition of network profiling to include the riskiest asset on the network: the user.
Advances in data science, combined with computing power and applied to data already collected within most organisations, can connect the dots and provide a useful profile of network user activity. While data science – i.e. Machine Learning – has become an overused buzzword, in practice it can provide very useful answers in certain applications. For example, Machine Learning can discover the connections between seemingly unrelated bits of identities, to create a map of all of a user’s activities, even when the identity components are not explicitly linked.
Other techniques can create baselines of normal behaviour for every user on the network, making it easier to understand whether each user is acting normally or not. Still other techniques can build better asset models, including which machines are likely ‘executive assets’ and at higher risk of attack. Profiling individual users enables an organisation to understand in great depth and with deep context exactly who is on the network; what they are doing; whether they should be doing it; and what it means to an organisation’s risk and security posture.
- Utilising in-guest encryption to secure the data itself
Garry McCracken, VP Technology at WinMagic
In a world where IT environments are becoming increasingly virtualised and hyper-converged, the attack surface is significantly expanding.
This means securing the data itself has become a top priority. Enterprises need to take appropriate steps to ensure that sensitive data never appears in the public domain. The solution is to ensure protection resides within the data by utilising in-guest encryption with keys that remain under the control of the virtual machine (VM) owner – the enterprise itself. VM-level encryption not only protects workloads wherever they may be within the enterprise infrastructure and beyond. It also delivers a significant number of additional advantages, including making it easy for IT departments to control all aspects of data security. It ensures that data can only be accessed by authorised users, even in the event that a cloud system is breached.
- Recognising and fulfilling skills gaps
Liam Butler, AVP at SumTotal, a Skillsoft company
The cloud has brought analytics back into the hands of business users, particularly in HR. In the ‘old days’, business analytics tools were shrouded in secrecy and owned by IT and MIS as part of the on-premise ERP system. Analytics are now part of our daily life, being used to enable insightful decision-making and to predict business outcomes. For example, the linking of workforce management data with training data allows manufacturers to predict workforce capacity planning issues in advance of a product launch, train employees prior to manufacturing demand or move shift patterns to meet demand.