Security as a Big Data application
I've suggested on several occasions, notably in this e-book, that the future of security rested with the idea of intelligence.
Security intelligence is the natural end of what has evolved into security event and incident management. As the threats get more devious, the responses need to get more intelligent and more holistic.
RSA has published a security brief that agrees, noting that "The dissolution of traditional defensive perimeters couple with attackers' abilities to circumvent traditional security systems requires organizations to adopt an intelligence-driven security model that is more risk-aware, contextual and agile."
And how can companies do this? Big data.
"Big data encompasses both the breadth of sources and the information depth needed for programs to assess risks accurately and to defend against illicit activity and advanced cyber threats," the report notes.
RSA sees Big Data as being a disruptive technology not only in SEIM but also in network monitoring, authentication, identity management, fraud detection and GRC processes. I've noted before that security would emerge as one of the most marketable applications of Big Data. Perhaps concrete signs will emerge this year that the theory has moved out of the labs and into the marketplace. For most companies, the transition will not be an easy or cheap.
- here's the report