Custodial Information Security (CIS) is an emerging field of cyber security that aims to overcome many of the limitations inherent in traditional forms of cyber security.
At its heart, CIS mediates the relationship between information and the authorised users who require access to that information. CIS does not provide any of the countermeasures that are typically found in a ‘Perimeter Defence’ styled network security environment – no Anti-Virus, no Anti-Malware, etc.
Custodial Information Security is intended to curate, track and forensically detail all interactions between users and the Custodial Information stored on the organisation’s systems. Where traditional cyber security is inside, looking out towards threats, CIS is inside the system, watching for threatening behaviour among credentialed users.
Over 70% of all data breaches have a credentialed user as their source, with over 80% of these breaches being traced back to human error. This makes human error, by legitimate staff, the single biggest threat to data security. It is also the one threat that traditional perimeter style defences cannot detect.
Meeting the challenge posed by raised cyber security requirements will be of paramount concern to suppliers intending to win a share of Defence business. Custodial Information
Security provides an opportunity to mature your organisation’s security posture toward ever greater compliance to the National Institute of Standards and Technology (NIST) and International trade in Arms Regulations (ITAR)/Export Administration Regulations (EAR) compliance instruments that are contract discriminators in the Defence world.
This seminar addresses the "Expert", which we define as:
- those already in the market and now needing specific skill areas.