What To Look For In A Security Consultant

Uploaded on 2016-07-29 in NEWS-Cybersecurity News, FREE TO VIEW, BUSINESS-Services-Consulting

Running a secure business means achieving organisational priorities in a fast-evolving landscape. This requires anticipation and adaptability.

Threats to business change rapidly and unpredictably, and your adaptability will be fundamental to your ability to sustain and improve security levels. You can only achieve this if your business environment and security strategy evolves based upon the latest expertise and technologies.

With that in mind, what are you looking for in a security partner?

Don’t tell me, show me 

The best way to choose a security partner is to ask them to show you, in real-time, how they are protecting themselves. This allows you to evaluate a potential partnership and security strategies, including from a compliance perspective.

Multi-nationals and governments have the additional challenge of large previous investments and shadow IT, and the size and complexity of these environments must be acknowledged. A consultative approach for road-mapping can help large organisations to better understand their cyber security issues by identifying risks in their existing systems and processes.
Road-mapping on the basis of vendor agnostic thinking is fundamental to this. To do so, I recommend you ask yourself the following questions:

Is my partner of choice offering to leverage previous investments made for operational, technical and commercial benefit?

Can an advisor show me a roadmap of how they’ve designed, implemented and operated relevant multi-vendor platforms?

What is their track record in integrating and adopting latest expertise and technology for themselves and their customers?

Partnerships

After selecting the right partner, the next step is assessing yourself in the context of your business priorities and what you are trying to protect. This assessment should cover three areas:

1.    Your business, including your strategy.
2.    Your existing security landscape, including previous investments made.
3.    Your solution and services landscape, including your operating model.

The transformation plans suggested from this should include how your existing technology choices can be incorporated and leveraged to the benefit of a cost-efficient security posture.

Following the roadmap

This approach requires the practitioner/security partner to show you a roadmap which will provide you with adaptability to change, making sure your business is sustainable.

It also means they must show you the ICT reality in order to demonstrate that the proposed theory is sound and realistic. And that it protects what’s relevant for your business in an adaptable manner, strategically, operationally and commercially across people, process and systems.

LetsTalk:   Techcrunch

 

« UK Parish Councils Can Get Website Construction Funding
AI Defeats Human Fighter Pilots »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ExaGrid Systems

ExaGrid Systems

ExaGrid provides Tiered Backup Storage with a unique disk-cache Landing Zone, long-term retention repository, and scale-out architecture.

DLA Piper

DLA Piper

DLA Piper is a global law firm with offices throughout the Americas, Asia Pacific, Europe and the Middle East. Practice areas include Cybersecurity.

Synopsys

Synopsys

Synopsys delivers trusted and comprehensive silicon to systems design solutions, from electronic design automation to silicon IP and system verification and validation.

Direct Recruiters Inc

Direct Recruiters Inc

Direct Recruiters is a relationship-focused search firm that assists IT Security and Cybersecurity companies with recruiting high-impact talent.

Altius IT

Altius IT

Altius IT reviews your website for security vulnerabilities and provides a report identifying vulnerabilities and recommendations to make secure.

Crossword Cybersecurity

Crossword Cybersecurity

We work with research intensive European university partners to identify promising cyber security intellectual property from research that meets emerging real-world challenges.

AppGuard

AppGuard

AppGuard prevents breaches by blocking applications from performing inappropriate processes using our patented dynamic isolation and inheritance technologies.

RFA

RFA

RFA is an institutional-quality IT, financial cloud and cyber-security services provider to the financial service and investment management sector.

Eaton

Eaton

Eaton provides comprehensive cybersecurity services for operational technology (OT) to help keep your operations and personnel safe.

HighPoint

HighPoint

HighPoint is a leading technology infrastructure solutions provider offering consultancy, solutions and managed services for network infrastructure and cybersecurity.

GoVanguard

GoVanguard

GoVanguard is an boutique information security team delivering robust, business-focused information security solutions.

Conversant Group

Conversant Group

Conversant Group is an IT infrastructure and security consulting company, providing technical, organizational, procedural, and process consulting internationally.

DoControl

DoControl

DoControl gives organizations the automated, self-service tools they need for SaaS applications data access monitoring, orchestration, and remediation.

Kusari

Kusari

Securing your software supply chain starts with understanding. Kusari is on a mission to bring transparency to your software supply chain and power secure development.

AUCyber

AUCyber

AUCyber is a leading provider of managed cyber security solutions and consultancy services, specialising in supporting Australian organisations and Government agencies.

Mesh Security

Mesh Security

Mesh Security transforms security data, tools, and infra for enterprise-wide visibility and control.