Welcome!

@CloudExpo Authors: Elizabeth White, Yeshim Deniz, Pat Romanski, Liz McMillan, Zakia Bouachraoui

Related Topics: @CloudExpo, Cloud Security, Government Cloud

@CloudExpo: Article

Surviving the Coming 'Hackerpocalypse' | @CloudExpo #API #Cloud #Security

With all the excellent training available on television today we are all well prepared to deal with the coming Zombie Apocalypse

With all the excellent training available on television today, we are all now well prepared to deal with the coming Zombie Apocalypse.  Our failure as a society lies, however, in our misunderstanding of the nature of the cybersecurity challenge. This failure threatens us all and our survival will depend on society’s ability to deal with the evolution and maturation of the changing enterprise cybersecurity challenge.

If you’re completely oblivious to the living dead threat, a zombie apocalypse refers to a widespread (usually global) rise of zombies hostile to human life.  The zombies will engage in a general assault on civilization where victims may become zombies themselves. This causes the outbreak to become an exponentially growing crisis. The spreading phenomenon swamps normal military and law enforcement organizations, leading to the panicked collapse of civilized society until only isolated pockets of survivors remain, scavenging for food and supplies in a world reduced to a pre-industrial hostile wilderness.

A recent report from the Herjavec Group describes the coming Hackerpocalypse as a similar global assault on modern society. The reports description puts the nature of global cybercrime in perspective by highlighting that:

  • Annual costs attributable to cybercrime are expected to rise from $400B in 2015 to more than $6T by 2021;
  • From 2017 to 2012, enterprise cumulative spend on cybercrime defense will exceed $1T. Some say that even if this estimate includes data collection, storage, security, analysis, threat intelligence operations and dissemination it still barely scratches the surface;
  • Black-Hat hackers, motivated by money, espionage, notoriety, and malicious intent, become even more nimble, experienced and daring than their White Hats adversaries who are constrained by boundaries and rules;
  • Continuing lack of effective cybercrime law enforcement
  • A severe cybersecurity workforce shortage of 1 million cybersecurity in 2016, will reach 1.5 million by 2019;
  • Hybrid warfare, a new type of global conflict where conventional and cyber warfare are combined and in which the aggressor avoids attribution or retribution, is now front page news.

Please don’t be lulled by an apparent separation between the virtual cyber world and our “real-life” physical one. An economic cyberattack could mortally disable the economy of a city, state or country, according to a recent RSA Conference blog post . Ted Koppel also revealed in a New York Times investigative piece that a major cyberattack on the United States’ electrical power grid is likely and that it would be devastating. A national cyberattack against power grids in Ukraine, not only crippled that county’s power systems but mining and railway companies as well.

To prepare for this almost inevitable battle, enterprise cyber defense teams must focus on an actionable list of “to do’s” which include the basics like:

  • Developing a practical plan to manage devices, end-user applications and related network infrastructure;
  • Designing, implementing and managing an integrated communications and networking environment;
  • Updating and regularly testing your business continuity processes to enable recovery of critical business applications no matter the circumstances;
  • Building and managing an efficient infrastructure with the ability to respond to change and drive innovation; and
  • Simplifying management and streamlining maintenance of your multi-vendor IT supply chain.

Standalone controls will not work against the sophisticated Hackerpocalypse menace. Once implanted, these advanced threats can remain hidden for months, or even years, collecting critical information and inflicting serious damage. Enterprises must adopt a multi-layered approach that leverages next-generation defenses with embedded intelligence and analytics.

Don’t sit cowering in a corner.

Take Action Today!

(This post was brought to you by IBM Global Technology Services. For more content like this, visit Point B and Beyond.).

Cloud Musings

(Thank you. If you enjoyed this article, get free updates by email or RSS - © Copyright Kevin L. Jackson 2015)

More Stories By Kevin Jackson

Kevin Jackson, founder of the GovCloud Network, is an independent technology and business consultant specializing in mission critical solutions. He has served in various senior management positions including VP & GM Cloud Services NJVC, Worldwide Sales Executive for IBM and VP Program Management Office at JP Morgan Chase. His formal education includes MSEE (Computer Engineering), MA National Security & Strategic Studies and a BS Aerospace Engineering. Jackson graduated from the United States Naval Academy in 1979 and retired from the US Navy earning specialties in Space Systems Engineering, Airborne Logistics and Airborne Command and Control. He also served with the National Reconnaissance Office, Operational Support Office, providing tactical support to Navy and Marine Corps forces worldwide. Kevin is the founder and author of “Cloud Musings”, a widely followed blog that focuses on the use of cloud computing by the Federal government. He is also the editor and founder of “Government Cloud Computing” electronic magazine, published at Ulitzer.com. To set up an appointment CLICK HERE

CloudEXPO Stories
"IBM is really all in on blockchain. We take a look at sort of the history of blockchain ledger technologies. It started out with bitcoin, Ethereum, and IBM evaluated these particular blockchain technologies and found they were anonymous and permissionless and that many companies were looking for permissioned blockchain," stated René Bostic, Technical VP of the IBM Cloud Unit in North America, in this SYS-CON.tv interview at 21st Cloud Expo, held Oct 31 – Nov 2, 2017, at the Santa Clara Convention Center in Santa Clara, CA.
In this presentation, you will learn first hand what works and what doesn't while architecting and deploying OpenStack. Some of the topics will include:- best practices for creating repeatable deployments of OpenStack- multi-site considerations- how to customize OpenStack to integrate with your existing systems and security best practices.
Everyone wants the rainbow - reduced IT costs, scalability, continuity, flexibility, manageability, and innovation. But in order to get to that collaboration rainbow, you need the cloud! In this presentation, we'll cover three areas: First - the rainbow of benefits from cloud collaboration. There are many different reasons why more and more companies and institutions are moving to the cloud. Benefits include: cost savings (reducing on-prem infrastructure, reducing data center foot print, reducing IT support costs), enabling growth (ensuring a highly available, highly scalable infrastructure), increasing employee access & engagement (by having collaboration tools that are usable and available globally regardless of location there will be an increased connectedness amongst teams and individuals that will help increase both efficiency and productivity.)
Founded in 2000, Chetu Inc. is a global provider of customized software development solutions and IT staff augmentation services for software technology providers. By providing clients with unparalleled niche technology expertise and industry experience, Chetu has become the premiere long-term, back-end software development partner for start-ups, SMBs, and Fortune 500 companies. Chetu is headquartered in Plantation, Florida, with thirteen offices throughout the U.S. and abroad.
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a member of the Society of Information Management (SIM) Atlanta Chapter. She received a Business and Economics degree with a minor in Computer Science from St. Andrews Presbyterian University (Laurinburg, North Carolina). She resides in metro-Atlanta (Georgia).