Echoworx Talking Security at Cloud & Cyber Security Expo London
Frédéric Virmont has worked for a decade in the area of vulnerability management –and is now leading a penetration testing program at a major organization in the pharmaceutical and chemical industry. Frédéric sat down with us at Cloud & Cyber Security Expo London 2019 to discuss current issues, strategies and current vulnerabilities he sees in the contemporary world of information security.
According to Frédéric, numbers of information security vulnerabilities are on the rise – and even breaking records. This is due, in part, to hackers and other scammers employing more creative and modern techniques to their malicious methods. As a result, Frédéric stresses the importance of monitoring systems 24/7 to ensure an entire company is not compromised by a single wayward click.
In addition to constant scanning for new threats and vulnerabilities, Frédéric says a successful pen test program builds reports, sets KPIs and provides real solutions to fixing information security issues. These solutions and reports must be presented in way which is easily understood by organization employees – particularly upper management.
In order to motivate teams into action, Frédéric says he provides visual rankings to show how well or poor a particular team is performing. A poor ranking, for example, might spur a team into action in order to improve their standing. Effective dialogue is important for positive action.