Microsoft offers insights to cyber-security experts in Oman
Times News Service
MUSCAT: Microsoft recently hosted the third edition of its popular CISO Executive Series in Oman, where industry experts and Chief Information Security Officers (CISOs) gathered to share and discuss current cyber security trends.
The event was titled “Insights for the Progressive CISO”, and offered the region’s security professionals a chance to engage in candid exchanges with some of the world’s most renowned experts, in a day of insights, networking and learning.
Microsoft released the 23rd edition of its Security Intelligence Report, a bi-annual publication the company creates for customers, partners, and the industry to educate organisations about the current state of threats, best recommended practices, and solutions.
The analysis on threat intelligence gathered from a global customer base across 100+ countries and millions of computers revealed three important trends in 2017.
First was the impact of Botnets, and how they continue to impact millions of computers globally, infecting them with old and new forms of malware. The second notable trend was low-cost attack methods being used by hackers for potentially higher returns. Third and still trending was Ransomware, which does not seem to be slowing down.
A live survey of Oman-based PCs, conducted by Microsoft in the first quarter of 2017, revealed 16 per cent of computers experienced malware of some kind, compared with a worldwide average of some 7.8 per cent.
Another research conducted by Microsoft among CISOs in the Gulf region in 2017, showed 60 per cent of regional organisations still use usernames and passwords to authenticate users to corporate networks. Only 30 per cent use two-factor authentication (2FA)— the combination of a username and password with texts or some other form of mobile notification. Some 5 per cent said they used facial recognition.
Dr Erdal Ozkaya, Cybersecurity Architect at Microsoft, spoke on the pressing need for “intelligent security”, as GCC CISOs continue to battle against increasingly sophisticated threats.
“An alarming number of regional organisations are still using outdated strategies and authentication models, even as international headlines continue to illustrate the intensity of the ongoing battles against bad actors,” said Ozkaya.
“The good news is that the intelligent cloud is armed with weapons that can match the sophistication of the attacks. Microsoft will continue to strengthen those capabilities on behalf of our customers, as we progress with forums such as the CISO Executive Series, where security professionals can hear from seasoned White Hat experts and likeminded CISOs,” he added.
Other industry leaders also spoke at the event, including Megha Kumar, Research Director at IDC, who presented “The Evolving Security Landscape” and Sung Pong, Chief Security Officer at Bank Muscat, who discussed “The Evolving role of the CISO”.
“There are malicious parties out there that seemingly never sleep. CISOs need to take a 24/7, 360-degree view of cyber security. The challenge has always been to find a workable middle ground between the rigidity of IT policy and the flexibility needed to be an agile, digital business,” said Kumar.
The Microsoft Gulf CISO survey also revealed 24 per cent of CISOs said their users had clicked on links in emails and discovered they led to websites of unknown origin. Only 21 per cent reported having a data-classification solution in place, with almost half (47 per cent) saying they were still in the process of acquisition and 32 per cent saying they had yet to make progress.
“Cyber strategies need to be holistic,” said Mohammed Arif, Regional Director, Modern Workplace and Security, Microsoft Gulf. “You need to consider that you will be breached. And then you need to consider what happens next. What do you do? Who do you call? How do you get back on your feet? Never forget that business continuity is as important as the protection of intellectual property,” he added.