IT security personnel need to not only know what actions we need to implement, w

Question

IT security personnel need to not only know what actions we need to implement, we need to understand why we need to take them and well as the any related background topics – we also need to be aware of current events as they relate to Cybersecurity

Your assignment is to pick one of the articles and write a response to it. This is not a major writing assignment. It doesn’t have to be long - a page should suffice. It should have a short summary of the article as well as what you take away from it. It should be written so that someone who has not read the article would understand what it was about and what your perspective is on the subject.

1. Yahoo Reveals Cookie Forging Activity Led to Account Breach

http://www.eweek.com/security/yahoo-reveals-cookie-forging-activity-led-to-account-breach

2. Dropbox’s tool shows how chatbots could be future of cybersecurity

https://nakedsecurity.sophos.com/2017/02/24/dropboxs-tool-shows-how-chatbots-could-be-future-of-cybersecurity/?utm_source=Naked+Security+-+Sophos+List&utm_campaign=1bf0f688c1-naked%252Bsecurity&utm_medium=email&utm_term=0_31623bb782-1bf0f688c1-454827669

Explanation / Answer

Dropbox’s tool shows how chatbots could be future of cybersecurity :

Dropbox is set to deliver open source automated security at scale with the newest bot to hit the market – Securitybot.

Built for Slack but designed to be transferable to other platforms, Securitybot automatically grabs alerts from security monitoring tools and verifies incidents with employees. Security teams, therefore, can sort through alerts much faster as they do not need to manually reach out to employees to verify access.

The bot is tied into Dropbox’s detection and alerting system, as well as its company-wide Slack instance.

Securitybot is designed to speed up the detection process and deliver the speed that security incidents warrant.

How Securitybot Works

After an alert is triggered via the detection and alerting system, the employee in question receives a message asking to confirm whether or not they performed the potentially malicious action. Responses, which are secured via two-factor authentication, are logged and later sent to the security team. Alert rollups are later augmented with employees’ responses to the bot.

“In the event where an employee reports that they did not perform an action, the security team is alerted immediately. This is meant to keep most alerting in the background but to surface the alerts that truly require prompt attention and follow-up,” explains Dropbox.

“Rather than spending their time repeatedly reaching out, our security engineers now have more time to work on foundational projects that improve our overall security posture.”

The file hosting giant claims that SecurityBot not only offers benefits to the security team, but to all of its employees.

“Securitybot not only helps the security team, but all Dropbox employees. Responding to a polite chat bot is much easier than responding, in full sentences at that, to a member of the security team,”

Related Questions

Navigate

• Browse (All)
• Browse I
• Subjects

Integrity-first tutoring: explanations and feedback only — we do not complete graded work. Learn more.