5
509322
Thread author
A detect-and-react cybersecurity strategy shouldn't replace prevention
Opinion
'Detect and react' won't win games when you can't stop the run
Don't ignore breach prevention in favor of a strategy of detection and reaction just because everyone thinks a breach is inevitable.
The hottest cybersecurity products and services use words such as DETECTION and to a lesser extent PROTECTION, because they can in fact deliver some of each. But PREVENTION is very different. In football, you can say you PREVENTED the opposing team from scoring a touchdown. You didn’t PROTECT them from scoring a touchdown, and you certainly didn’t DETECT them from scoring one. PREVENTION is a strong word, whatever was about to occur simply didn’t. You PREVENTED it from occurring. DETECTION is not so strong. Your alarms could have DETECTED someone entering your home, but by the time the police came, the burglars and your valuables are long gone.
Opinion
'Detect and react' won't win games when you can't stop the run
Don't ignore breach prevention in favor of a strategy of detection and reaction just because everyone thinks a breach is inevitable.
The hottest cybersecurity products and services use words such as DETECTION and to a lesser extent PROTECTION, because they can in fact deliver some of each. But PREVENTION is very different. In football, you can say you PREVENTED the opposing team from scoring a touchdown. You didn’t PROTECT them from scoring a touchdown, and you certainly didn’t DETECT them from scoring one. PREVENTION is a strong word, whatever was about to occur simply didn’t. You PREVENTED it from occurring. DETECTION is not so strong. Your alarms could have DETECTED someone entering your home, but by the time the police came, the burglars and your valuables are long gone.
