Wednesday, April 25, 2018

Don't forget that we are humans

It’s quite common that in sci-fi movies are the robots the ones that rule the world. In the “I, Robot” film, Will Smith tries his best to end with this idea and to make a more human world. What happens? An error occurs in a robot and Will Smith ends up nearly killed several times when fighting an infected droid. Nowadays, analysts aren’t in that point but sometimes they can be overwhelmed by the amount of threats they can be dealing with every day. The solution can be found where human experience and automation meet. 

LogicHub realized a survey in the RSA Conference in 2018 and they identified that 79% of the surveyed thought that human experience and automation of safety are the perfect combination for a powerful and safe infrastructure that will keep cyber-attacks away.

206 days are the average number of days an infraction in the company system can be detected in. Despite human experience, this number shows that the human factor and the automation part are not working together enough. This makes analysts tired and constantly alert. It’s because this pressure, it’s easier to not detect a threat.

The Survey, made by security analysts, CISO, InfoSecurity experts and safety engineers, shows that 66% of them have a team dedicated to watch and point the threats.  But these teams do not often have the automation techniques they need for that, what gives the analysts more data to analyze that they possibly can.

The data obtained in the survey showed that there’s a good chance that the surveyed will incorporate the automatic learning along with professionals to follow safety threats. Other data that the survey showed were:
  • 78% of surveyed have experienced somehow and overwhelm while working and being alert. 
  • 79% informed that automation along with human analysts was more effective to follow threats.  
  • 93% said that is essential to have a human factor. 
  • 66% of the surveyed that have a team to haunt threats aren’t working with the right kind of automation.  
Some SecOps teams develop manuals to train workers, but when that happens in real life, you can’t follow every step that the manual is describing. Data are overwhelmed and fatigue can lead to analysts to not see threats. This makes threats more dangerous. Security analysts are fighting an increase of 40% in threats and infractions every year. This last year, there were more than 1,500 infractions in the United States that made 179 million entries. The lack of cyber-security abilities in the industry is increasing the analyst’s fatigue when detecting threats.

As Kumar Saurabh, LogicHub CEO, says: “Threats are constantly evolving. We know that machines can evolve but we can’t expect that they overcome human intelligence.” We should never forget that behind every automatic process there’s a human being. 


Post a Comment