SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
New Zealand

Stories by Anthony Stitt

Global Stories

Written by Anthony Stitt

Five pointers for choosing a Threat Intelligence Platform
Risk & Compliance

Five pointers for choosing a Threat Intelligence Platform

Companies are investing in Threat Intelligence Platforms (TIPs) to enhance cybersecurity and manage the deluge of data from disparate sources.

By Anthony Stitt 6 min read Tue, 1st Mar 2022
The state of the SOC: skills shortages, automation and gaining context remain a challenge for SOCs
Security Operations Centres

The state of the SOC: skills shortages, automation and gaining context remain a challenge for SOCs

The security operations centre (SOC) has been on the front line facing the pandemic-induced escalation of cybersecurity threats in the past eighteen months.

By Anthony Stitt 5 min read Mon, 10th Jan 2022
Maximising your investments through security automation
Cloud Services

Maximising your investments through security automation

Organizations have accelerated their plans for security automation due to the COVID-19 pandemic, with 80% now having partial automation, a new report finds.

By Anthony Stitt 3 min read Thu, 25th Nov 2021
The threat model as a compass
Advanced Persistent Threat Protection

The threat model as a compass

Just like a compass, regularly reviewing the threat model keeps the CTI teams IR's pointed in the right direction over time.

By Anthony Stitt 5 min read Wed, 3rd Nov 2021
Anatomy of a supply chain attack: how to accelerate incident response and threat hunting
Supply Chain

Anatomy of a supply chain attack: how to accelerate incident response and threat hunting

Supply chain attacks show no sign of slowing down. But the right combination of platforms can help organisations get ahead of the threat.

By Anthony Stitt 4 min read Tue, 5th Oct 2021
What makes a security analyst successful? Investigative thinking
Cybersecurity

What makes a security analyst successful? Investigative thinking

Empowering humans to engage in critical thinking is vital to efficient detection and response, writes ThreatQuotient APJC regional director Anthony Stitt.

By Anthony Stitt 3 min read Thu, 2nd Sep 2021
Leveraging a new MSSP/MDR SOC contract to build an intelligence practice
Supply Chain

Leveraging a new MSSP/MDR SOC contract to build an intelligence practice

Few organisations have matured their security operations (SecOps) to the point where they have integrated a complete CTI practice.

By Anthony Stitt 5 min read Thu, 26th Aug 2021
Companies must be on the same page to achieve strategic & tactical CTI management
Cybersecurity

Companies must be on the same page to achieve strategic & tactical CTI management

An effective CTI program requires the alignment of people, processes and technology, writes ThreatQuotient APJC regional director Anthony Stitt.

By Anthony Stitt 4 min read Wed, 4th Aug 2021
Proactively mitigate cyber risk with MISP and TheHive
Malware

Proactively mitigate cyber risk with MISP and TheHive

When an attack happens, security teams should be ready with information about who is attacking and the steps being taken to mitigate damage.

By Anthony Stitt 4 min read Thu, 10th Jun 2021
Defence engineering and threat intel — no stone left unturned
Security Information and Event Management

Defence engineering and threat intel — no stone left unturned

Understanding the limitations of defences requires examining how blocking and detection systems leverage cyber threat intelligence.

By Anthony Stitt 5 min read Thu, 27th May 2021
Pandemic sees organisations of all sizes and industries invest in CTI
Cybersecurity

Pandemic sees organisations of all sizes and industries invest in CTI

The 2021 SANS Cyber Threat Intelligence survey reveals the growing importance of CTI as cyber-breaches and COVID-19-related attacks increase.

By Anthony Stitt 5 min read Tue, 6th Apr 2021
MITRE ATT&CK: A holistic cyber approach
Advanced Persistent Threat Protection

MITRE ATT&CK: A holistic cyber approach

The MITRE ATT-CK framework provides a threat-informed approach to detecting and protecting against malicious attacks.

By Anthony Stitt 5 min read Tue, 9th Mar 2021
Threat intelligence platforms underpin security efficiency and effectiveness
Cybersecurity

Threat intelligence platforms underpin security efficiency and effectiveness

Cyber-threat fusion centres transform siloed security, enhancing cross-department intel sharing & decision-making.

By Anthony Stitt 5 min read Tue, 15th Dec 2020
Why best-practice threat data management provides confident automation
Advanced Persistent Threat Protection

Why best-practice threat data management provides confident automation

Understanding an organization's threat landscape requires the right data sources and prioritization for actionable intelligence.

By Anthony Stitt 5 min read Tue, 13th Oct 2020
Organisations already have the threat intelligence they need, finding it and actioning it is another question
Phishing

Organisations already have the threat intelligence they need, finding it and actioning it is another question

Many organisations struggle to create an effective threat model, but internal threat intelligence data can provide valuable insights.

By Anthony Stitt 5 min read Mon, 31st Aug 2020
Why answering the question of orchestration vs automation will improve your security effectiveness
Cybersecurity

Why answering the question of orchestration vs automation will improve your security effectiveness

Organisations must weigh orchestrating versus automating security operations to enhance effectiveness, as cyber spending outstrips IT outlay by nearly 2:1.

By Anthony Stitt 5 min read Mon, 3rd Aug 2020
Successful threat hunting requires curation & collaboration
Document Management

Successful threat hunting requires curation & collaboration

Many organizations already have the technology required for threat hunting, with SIEMs and threat intelligence a starting point.

By Anthony Stitt 5 min read Mon, 5th Aug 2019
The five key steps to security automation
Security Information and Event Management

The five key steps to security automation

Volvo's CEO skips level 3 self-driving cars, deeming them unsafe. What lesson can we learn about automation in security operations?.

By Anthony Stitt 4 min read Mon, 30th Jul 2018

Stories from Other Regions

Written by Anthony Stitt