Organisations are now looking to shift away from stand-alone security. A siloed security strategy that is only focused on threat prevention, and treats all alerts and threats equally, is not only inefficient – it wears defenders out. We can’t prevent everything, so we must prevent what will affect us most from a security standpoint.
That’s where a detection, response and recovery strategy comes into play. This strategy is underpinned by risk-based contextual analysis (i.e. exactly how concerned do we need to be with this new vulnerability?) and continuous trust assessment.