In a blog post earlier this year, I discussed the increasing role data security is playing in the world today. As mentioned in the article, 2014 was dubbed the “Year of the Data Breach”. Around the time of the post, Sony had just been hacked. Subsequently we learned there was credible evidence the cyber-attack was launched from outside the United States.
This past week, the United States took extraordinary action to address the issue, by declaring a national emergency.
Without too much fan-fare, on April 1, an Executive Order arrived on the Whitehouse.gov website, declaring malicious cyber-enabled activities, originating from outside the United States, to “constitute an unusual and extraordinary threat to the national security, foreign policy, and economy of the United States”. If you live in the Unites States, don’t be alarmed as we’ve been at some state of national emergency for over 30 years. A national emergency, sadly, is nothing new.
Whether you praise the action or not, what is undeniable is that cyber security and dealing with malicious IT threats is on everybody’s radar, including the POTUS.
Splunk is a technology we implement which deals with the issue at hand. Splunk App for Enterprise Security provides an analytics-based approach to enterprise data security and event management. Features include incident tracking dashboards and reports, remediation workflows, and security analytics.
I recommend you consider looking at these Splunk capabilities in Enterprise Security to improve your defenses and improve your tracking of breaches, both as a standalone data security solution and in conjunction with your IBM data environments and storage devices. You may need proof of attack one day to support legal action.