Securing Buy-in to Fight APTLockheed Martin's Lachesky on Making the Business Case
Bad news about APT: Attacks are bigger, faster and aimed at a wider variety of targets. How must organizations win board support to improve their defenses? Lockheed Martin's Justin Lachesky shares insight.
The first step is to recognize that traditional endpoint security solutions just won't cut it any longer, says Lachesky, manager and lead analyst for Lockheed Martin's Commercial Cyber Services Cyber Intel Analyst team.
"It really takes a more holistic approach to be effective in defending against threats when those threats are both technically sophisticated, but also rapidly adapting and changing," he says. "This really means that organizations must have an underlying approach in mind to allow them to outmaneuver the attackers, using people, process, technology and also threat intelligence."
Which all sounds great. Except how do you get the board and senior management to buy into the security plan?
"It's critical that we make the point to the board ... that APT defense isn't just a bolt-on option," Lachesky says. "The reality is that effective defense depends on a solid, sound approach technically, but also procedurally, and it really has to be supported organizationally."
In this interview, Lachesky discusses:
- The latest advanced threats;
- How to discuss APT security with senior leaders;
- How to measure the ROI of APT defense.
This is the first in a series of three interviews dedicated to "Selling Security to the Board." Subsequent installments of this series, sponsored by Lockheed Martin, will be focused on the insider threat and security intelligence centers.
Lachesky is the manager and lead analyst for the Commercial Cyber Services Cyber Intel Analyst team. He has over six years of professional experience, and his background in the cyber security domain includes working as an analyst as part of LM Computer Incident Response Team (the group responsible for LM's computer network defense) as well as supporting Lockheed Martin commercial clients. He and his team support commercial clients through a variety of services, products, and engagements with a unique focus on robust cyber security and advanced threats. Lachesky leverages his expertise in industry-leading technologies and methodologies to respond to these information security threats. He and his team conduct incident response and triage activities for Lockheed Martin customers and provide remediation and mitigation strategies. This includes analyzing APT tactics and techniques, developing and implementing advanced detections and analysis capabilities for APT, and performing Incident Response and Forensics.