What is the missing component of cybersecurity?

What is the missing component of cybersecurity?


ContraForce’s Hannah Gerstner discusses why organisations need to go back to the basics when developing their strategy to prevent cyberattacks

Guest contributor |

The ‘people, processes and technology’ framework is an outdated and over-simplified concept. Though a radical idea when the term was first coined in the 1960s, businesses still struggle to execute the concept today – especially when it comes to cyber resiliency. Despite a growing cybersecurity market (worth over $150 billion), cyberattacks are growing at exponential levels.  

With the increase in technology adoption and hybrid work, small and medium-sized enterprises (SMEs) are frantically looking for a better way to stay secure. Vendors often position products as a quick-and-easy solution to the problem but in reality, the problem isn’t the lack of people, processes, and technology: it’s the lack of foundation.  

We are relentlessly told that technology is the be-all and end-all to our security concerns, but technology does not solve a problem; it simply creates the opportunity to do so. It’s easy, then, to think that the appropriate solution is to find the ‘right’ people to implement the ‘right’ processes, but this is not the case. The ‘people, processes and technology’ concept is the equivalent of having all the ingredients to bake a cake, but no oven to cook it. So, what’s missing? The foundation. 

To enable a truly resilient cybersecurity culture, SMEs need to shift their focus to building a solid foundation. For many, managing the complexities of security tools monopolises the time of IT teams, who often spend more time managing their security stack than on keeping the company secure. These tools overwhelm users with data and alert fatigue and provide a fragmented picture of their security posture. We must ask ourselves; do we really know what it is that we’re protecting? Do we have a common understanding of our organisational goals?  

When speaking with those responsible for their organisation’s cybersecurity, a similar need is expressed time and time again: “All I need is to know when an incident occurs, the severity of it, and how to react.”  

ContraForce, a software-as-a-service cybersecurity solution, does just that. ContraForce is the rock-solid foundation of technology, people and processes needed to be truly cyber-resilient. The platform condenses existing Microsoft tools into a centralised dashboard to enable organisations to increase detection coverage, easily remediate threats, and deploy a holistic security programme, among other capabilities. With ContraForce, you know when and how to respond to threats, every time.  

Hannah Gerstner is vice president of marketing at ContraForce  

This article was originally published in the Winter 2022 issue of Technology Record. To get future issues delivered directly to your inbox, sign up for a free subscription

Subscribe to the Technology Record newsletter

  • ©2024 Tudor Rose. All Rights Reserved. Technology Record is published by Tudor Rose with the support and guidance of Microsoft.