We need to re-think our security paradigm from the long-standing one of trying to keep bad guys out of our networks to assuming that they're already inside. This is known in government circles as "Assumption of Breach".
Deborah Hayden of the NSA's Information Assurance Directorate has said as much back in December, 2010. Price Waterhouse Coopers has been an advocate of that strategy as well. New startups like CrowdStrike, founded by principals from McAfee, are basing their entire business model on an Assumption of Breach focus. Such a strategy involves multiple new tactics but two are key: enhanced threat intelligence and how to prevent critical data from leaving your network.
"Assumption of Breach" will explore how we arrived at this point, the latest thinking from the U.S. Intelligence Community on this topic via interviews with former and current officials, and provide strategic advice on how companies should establish a ranking system similar to how the U.S. government classifies documents (Top Secret, Secret, Confidential, FOUO) and place appropriate security controls on their data.
