Under A Watchful Eye - Unified Observability

Uploaded on 2022-12-19 in TECHNOLOGY--Resilience, FREE TO VIEW

 A company that is blind is one that could be vulnerable to a number of issues. As tech stacks scale up with the organisation, they can become unwieldy and complex. If expansion takes place across a number of locations and geographies then there’s also a risk they can become siloed, with disconnected IT managers acting independently to manage their own, localised issues and offices.

This issue was compounded during the pandemic, when people had to work from home, leading to even more disparate connections to networks.
 
By their nature, siloes have a huge impact on visibility of operations, causing IT leaders to often struggle to understand the bigger picture of their system’s health, efficiency, and security. With so much to oversee, they simply can’t determine where the vulnerabilities are in the system to fix them, leaving them open to attack. This ultimately means that IT teams switch to a reactive state of mind instead of proactive and are only able to deal with issues after they’ve been reported.
 
This can be particularly dangerous when it comes to cyber security and external threats. Not having unified observability of the tech stack can mean that it’s almost impossible to understand the gaps in protection. In the unfortunate case of a cyber breach, whether it’s from external actors or simple mistake on the part of employees, acting after the fact is too late. The damage will be done.

What’s worse, the immediate reaction following a breach might be to implement even more processes and add more solutions to prevent a recurrence.

While these may shore up existing vulnerabilities, without fully understanding the stack, there may well still be undetected issues and danger, ones that may ultimately be exploited and result in even more products being bought in and added. It can become a full-time job just adding, learning, managing and then repeating the whole cycle as the company’s technology continues to bloat and disconnect.
 
The only way to put an end to this problematic cycle is to build tech stacks with unified observability inbuilt from the offset, keeping a watchful eye as it grows and scales with the company. Alternatively, when undergoing a digital transformation, companies need to make sure that, as they consider their objectives and the technology they need to be competitive and remain at the cutting-edge, they’re also making sure their stack is properly visible.
 
And this leads to the question, who does it need to be visible to? Naturally, people on the ground don’t need to have a sense of the entire picture. They need to understand where they fit in and their place in the grand scheme of things but ultimately it’s a CIO that needs to, at a moment’s notice, be able to understand exactly what is happening and where any issues may potentially be. This means that they’re able to report the Board and help them remain confident in the company’s digital capabilities and resilience.
 
Cybersecurity has been a particularly hot topic at the Board level, but there’s more to it than that. Being able to demonstrate the company’s overall readiness - the ability to defend against any upcoming issues, security or otherwise, and the ability to support in achieving real business objectives.

The topic of ‘readiness’ is starting to gain more and more traction, but how can you be ready for the future and whatever it may bring if you don’t even know where you are?

As this concept becomes more understood at the top levels, it’s more and more likely that CIOs will be called upon to demonstrate that their technology is fit-for-purpose. Being unable to answer questions will not enhance Board confidence and is quite likely to start panics - which may lead to unnecessary spending and more complexity.
 
Cyber and other issues cost time and money. They interrupt business continuity, damage reputations and can cost huge sums to put right. Unified observability is just one tool in a company’s arsenal but it may be one of the most important ones to save time, save money and keep companies on the right track for growth.

Matt Tuson is EMEA General Manager at LogicMonitor

You Might Also Read: 

Cybersecurity Risk Management In The Real World:

 

« Congress Wants To Ban TikTok
The Great Resignation »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Sophos

Sophos

Sophos is a worldwide leader in next-generation cybersecurity, protecting more than 400,000 organizations of all sizes in more than 150 countries from today’s most advanced cyberthreats.

Netsparker

Netsparker

Netsparker provide a web application security scanner to automatically find security flaws in your websites, web applications and web services.

Cato Networks

Cato Networks

Cato connects your branch locations, physical and cloud datacenters, and mobile users into a secure and optimized global network in the cloud.

CSIRT Malta

CSIRT Malta

CSIRT Malta supports critical infrastructure organisations in Malta on how to protect their information infrastructure assets and systems from cyber threats and incidents.

Skkynet Cloud Systems

Skkynet Cloud Systems

Skkynet is a leader in real-time data systems for the secure management and control of industrial processes (SCADA) and embedded devices (M2M).

HelseCERT

HelseCERT

HelseCERT is the health and care sector's national information security center for Norway.

Bechtel

Bechtel

Bechtel’s Industrial Control Systems Cyber Security Laboratory focuses on protecting large-scale industrial and infrastructure systems that support critical infrastructure.

Security & Intelligence Agency (SOA) - Croatia

Security & Intelligence Agency (SOA) - Croatia

SOA is the Croatian security and intelligence service. Areas of activity include Cyber Security and Information Security.

Vigilant Software

Vigilant Software

Vigilant Software develops industry-leading tools for intelligent, simplified compliance, including ISO27001-risk management and EU GDPR.

Energia Ventures

Energia Ventures

Energia Ventures is a three-month intensive accelerator for entrepreneurs with an innovative business in the energy, smart grid, cleantech, and cybersecurity sectors.

German Israeli Partnership Accelerator (GIPA)

German Israeli Partnership Accelerator (GIPA)

GIPA is based on two pillars: it is an incubator aimed at young academics and a program to transfer cybersecurity expertise to corporate partners.

Atakama

Atakama

With Atakama, data remains encrypted until the very moment it is used, and the ability to decrypt is based on zero trust architecture.

Corellium

Corellium

Corellium are dedicated to supporting our peers in the ARM community who seek to build more secure, performant, and accessible software and devices.

Trojan Horse Security

Trojan Horse Security

Trojan Horse Security are specialists in corporate security. Our services include: Comprehensive Cyber Security Analysis, Penetration Testing, Network Security and Security Audits.

Price Forbes

Price Forbes

Building on more than 100 years of specialist insurance broking, Price Forbes partner with clients around the world who are looking to understand and balance today’s risk and plan for the future.

Sansec Technology

Sansec Technology

Sansec Technology is dedicated to the research and development of cryptographic products and solutions for cyber security.