It’s nice to be vindicated, isn’t it? (BIG data meets Security)

I hold a series of C’level roundtable discussions every quarter for a select group of customers and prospects of EMC. At all of these lunches the talking starts as we sit down and no-one seems to take a breath until the venue throws us out. While discussing security last quarter, I spoke about the role of ‘Big Data’ which was met by a collective sigh around the table… and a comment about “Clive’s hobby horse!”

drown shark

Last week I was vindicated with a press release titled, “Security Leaders Urge Organizations to Prepare for Big Data Revolution in Information Security” (google search). I keep telling people that security is a big data problem because it it’s the ‘classical’ big data classification of VVV and maybe another V:

– Volume:- Lots of data coming from the fire hose, logs, events, etc..

– Velocity:- – just consider the EMC RSA product Netwitness that captures every network packet in and out of an organisation

– Variety:- Every place you take information from will provide it in a different shape, size and flavour.

Then the ‘Big Data’ techniques of matching, linking and modelling allow us to bring the data together, look for known patterns, apply heuristics to look for suspicious behaviours… and wallah – Security is a Big Data Problem.

The brief is worth reading, (here), as it outlines an approach to preparing to include a ‘Big Data’ approach to your ‘intelligence-driven’ security program:-

  1. Set a holistic cyber-security strategy
  2. Establish a shared data architecture for security information
  3. Migrate from point products to a unified security architecture
  4. Look for open and scalable Big Data security tools
  5. Strengthen the SOC’s data science skills
  6. Leverage external threat intelligence

Big Data is changing the way we live, work and play!

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s