Manage Learn to apply best practices and optimize your operations.

Schneier: Incident response management key to surviving a data breach

SAN FRANCISCO -- Between Target, Home Depot, Sony Pictures and many others, 2014 was undeniably the year of the data breach, and companies are finally realizing the likelihood that they could be next.

"Last year was being called the 'year of the breach,'" said Bruce Schneier, CTO of Resilient Systems, formerly Co3 Systems. "Now, you and I know every year [has] been the year of the breach. But last year there were a bunch of really high-profile breaches where the companies involved did a terrible job of responding, that they were actually in chaos and it looked that way."

In this interview, recorded at the 2015 RSA Conference, SearchSecurity editorial director Robert Richardson sat down with Schneier to discuss Resilient Systems' contribution to improving enterprise incident response management in the coming year.

"This is the year that companies are recognizing that they're not going to be able to prevent these attacks," Schneier said. "They look at something like Sony and [say], 'I cannot for any amount of money stop the government [of] North Korea from getting into my network.' And they're right."

Schneier goes on to say he believes the key to successful attack management is threefold -- involving protection, detection and response -- and companies are starting to realize they need to beef up their response efforts.

Schneier also discussed the risks of public key infrastructure and why it failed, and if the industry will ever give up on SSL.

View All Videos

Conference Coverage

RSA Conference 2015 special coverage: News, analysis and video

Join the conversation

1 comment

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

is your organization putting more focus on incident response management?
Cancel

-ADS BY GOOGLE

SearchCloudSecurity

SearchNetworking

SearchCIO

SearchEnterpriseDesktop

SearchCloudComputing

ComputerWeekly.com

Close