Given the increasing talent gap, when it comes to security and risk departments within organizations, practitioners have their hands full. While measurably reducing risk within the business is the primary goal, there are many variables at play that make the task seem overwhelming.
What one would not guess is that those variables are all things that security pros could leverage to combat cyber threats. The problem? There’s too much out there - something that Tony Sager, Senior Vice President and Chief Evangelist at the Center for Internet Security, describes as the fog of more.
The term is a pun based off of a book titled, “Lifting the Fog of War,” which discusses the challenges of high-risk decision-making in the emergence of the information age, Sager says.
“For me, the fog of more was to illustrate a concept,” Sager told InfoSec Insider during a recent interview at the InfoSec World Conference & Expo in Orlando, Florida. “Never in our history as defenders have we had so much to work with, so many tools, training, events to learn, certifications to buy, services to contract for…and yet, we don’t seem to be getting better.”
Not improving at all could be an overstatement, Sager says, but one thing’s for sure, the bad guys are getting better faster because they’re agiler.
In this full-length interview with the cybersecurity expert, he discusses how the overabundance of information is disrupting security professionals, but also provides sage advice on how they can combat this fog of more.