When it comes to detecting network intrusions, "how long does it take you to find an incident?" asks Jason Steer, the chief security strategist for Europe, the Middle East and Africa for threat-intelligence firm FireEye.
In 2014, breached organizations took an average of 205 days to detect the related intrusion and begin locking down their systems, according to research published by FireEye. On the upside, that breach-detection delay was an improvement on the average of 229 days it took organizations to spot a breach in 2013.
Even so, "that number is way too high, way unacceptable," Steer says. Hence the question for FireEye is straightforward: "How do we help customers shrink that down to hours and minutes?"
In an interview at Infosecurity Europe, Steer also details:
- The need to more quickly detect and remediate data breaches;
- Putting a plan in place to get ready to deal with breaches - before they happen;
- The likely impact of the anticipated new EU data breach notification law.
Before taking on his current role at FireEye, he previously worked as the firm's EMEA product manager and senior architect, as a solution architect for fraud-detection firm Silver Tail Systems, as a solutions architect for application security firm Veracode, and product manager for email and Web security gateway and management vendor Cisco IronPort.