Last Friday, we hosted a Virtual Think IT Panel Event on the topic, Security Changes, and Priorities. A huge thank you to our panelists Eyal Altman, Vice President, Chief Digital & Information Technology Officer at Littelfuse, Chris LeBeau, Global IT Director at Advanced Technology Services, and Mohammed Hanif, CIO at Oasis Financial, for sharing their security roadmap and how it’s changed in 2020. A huge thank you to everyone who joined us as well! 

Below you will find an overview of the most popular questions from our members and a summary of what was discussed. 

Has your security roadmap changed from your original 2020 plans? 

There has been more of an emphasis on the endpoint of their roadmaps and what will protect their benefit in the end. The panelists have been standardizing and simplifying the security stack. They have started with one product while increasing visibility and adding vulnerability. There is a significant focus on user experience as well.  

How is AI being utilized as a part of your security recognition programs? Has it helped identify potential threats faster? 

AI has helped the panelists look at talent and how to manage it better. This will be more of a 2021 initiative due to everything that is already going on in 2020. The panelists will use this to create the best possible information that will be going on in their environment.  

Have you seen an uptick in certain types of security threats during this pandemic as most people are working remotely from home? If so, what kinds of threats? 

There has been an uptick in security threats during the pandemic. Some of the threats include impersonation emails, fraud within banking, and false public reports. The panelists are trying to focus on what is happening in their industries as they are different.  

Considering People, Process, and Technology, which area do you think has been the hardest to gain traction on and execute as it relates to your security posture? 

The most challenging area to gain traction is with people. The panelists agreed that you have to have everyone on board with what you are doing to your security posture. For some, this may mean changing their current habitat, which is difficult for some people.  

What are the legal/compliance requirements once you know an attack (do you need to report it to the FBI, etc.)? 

The panelist emphasized not calling the FBI first after an attack. The first step you should do is contact your insurance company. It is important to have a reporting conversation with your team to know what to do in situations of an attack. Some of the panelists teach their employees this by doing different simulations.  

What percentage of your budget is allocated to security? 

There is no specific budget that is allocated to security. The percentage that they do have now will never be smaller than it is today. 

The panelists have been dedicating more energy to “what if something happens” scenarios and planning around them, so they are prepared. This is helping them adapt to the changes that 2020 has brought them.