Page 108 - Cyber Defense eMagazine Special RSA Conference Annual Edition for 2022
P. 108

Leading  organizations  with  mature  cyber  risk  management  practices  have  already  been  employing
            darkweb monitoring as a critical asset in their security monitoring arsenal for quite some time. Of late,
            they have also expanded the scope of darkweb monitoring to help manage their third-party/supply chain
            cyber risks. Some of the key applications of darkweb monitoring for third party risk management include
            -

            1.     Identifying compromised credentials of their critical third parties or customers

            2.     Identifying and assessing their data exposure in the event of a third-party data breach


            3.     Assessing cyber risk exposure of a potential M&A target as part of due diligence

            4.     Identifying their customer data in a third-party data breach and initiating Data Breach Notification
            processes as stipulated by various Data Protection Regulations such as GDPR


            5.     Continuous risk assessment and cyber risk monitoring of critical vendors or business partners
            based on their data/access exposure on the darkweb

            As the cyber threat landscape evolves, it is no longer sufficient to rely solely on enterprise security tools
            such as endpoint and perimeter security controls to safeguard organizational data. Organizations need
            to look beyond the perimeter to gain continuous visibility and insight into what their adversaries know
            about them and then remediate those issues before they can be exploited.

            In this endeavor, darkweb monitoring has quickly emerged as a valuable tool in cyber defenders’ arsenals
            - something every security-conscious organization should consider including as part of their cyber risk
            management strategy.






            About the Author

            Kaustubh  Medhe,  Head  of  Research  and  Intelligence,  at  Cyble  is  a
            seasoned cybersecurity and risk management professional with 20+ years
            of  diverse  experience  in  consulting,  practice  management,  and
            cybersecurity operations. Before joining Cyble, Kaustubh gained extensive
            experience  in  successfully  managing  security  service  programs  and
            engagements for several clients in the Insurance and Banking sector in
            India, the Middle East, and APAC.

            Kaustubh  can  be  reached  online  at  https://in.linkedin.com/in/kaustubh-
            medhe-8963204?trk=public_post_share-update_actor-image  and  at  our
            company website https://cyble.com/













                                                                                                            108
   103   104   105   106   107   108   109   110   111   112   113