Essential 8 Auditor
Essential 8 Scorecard
SmartCheck
Outcome-Driven Metrics and Protection Level Agreements
Anthropic’s Mythos AI model reportedly leapfrogs the coding and cyber security hacking capabilities of previous Frontier AI models. Similar future developments will undoubtedly further challenge effective cyber security protection. Testament to that is the recent revelation that Mythos has successfully reverse-engineered a cell type from raw DNA data. AI will soon grant people extremely dangerous powers and our defences will have to become more purposeful, everywhere.
The AI horse has truly bolted and effective cyber security now means something quite different to just months ago. Then, a successful attack might have taken an expert hacker several weeks to research and execute. AI can now autonomously achieve it in hours. In an open letter to industry ASIC advises that AI is shifting the cyber threat landscape:
Organisations need to stress test their security controls and risk management practices thoroughly. Their ongoing cyber resilience depends on it.
These AI advances will in time deliver improved cyber defences and less vulnerable attack surfaces. But for now, they assist hackers more than the enterprises and security teams that protect them. In the wrong hands, AI assisted adversaries will automatically identify and exploit vulnerabilities at speed. An uplift in compensating security controls, defence in depth, and attack-surface protection is now essential.
Levels of enterprise cyber security risk are understated, almost everywhere. As a result, calculus of operating, economic and reputational risks has changed.
Cyber security policies and risk management practices must now shift focus from security controls compliance to addressing unprotected vulnerabilities.
Automated AI attacks, with their speed and precision will severely test most cyber governance practices. As the times from discovery to vulnerability exploit (TTE) plummet the speed to security gaps detection becomes more critical.
Prudent cyber security practices are no longer just about compliance with security frameworks (if it ever was?). Security frameworks with their rules-based processes and controls must continue to guide cyber security activities. But the time to secure a security gap now determines your cyber posture; not your level of framework compliance.
Evidence-based actionable intelligence is now vital to identifying and protecting the attack surface against emerging security gaps. With remediation times now being compressed, effective cyber defence requires up-to-the-minute information to support more dynamic risk mitigations practices. The inability of sampling or arbitrary risk assessment techniques to assist in identify emerging security gaps, is reducing their usefulness.
Organisations need to recalibrate cyber security practices to better match this greater need for speed and precision. Security and risk teams need more up-to-the-minute security intelligence to inform their dynamic risk management and security decision making.
The need for dynamic cyber security and risk management raises the question of the adequacy of existing cyber governance practices. For many, an annual review of such matters may now be too infrequent to meet current regulatory reporting obligations.
The increased velocity, scale and effectiveness of AI attacks means cyber security and risk management processes need a thorough review. On top of plummeting TTEs is the reported skyrocketing of vulnerability numbers (CVEs). Together these factors make “keeping a continuous and watchful eye over your attack surface” increasingly taxing.
Security and risk teams now require near real-time visibility of their attack surface and the effectiveness of their mitigation responses. Data-driven threat exposure management (CTEM) technologies ensure faster and more reliable threat detection and risk management practices. In the background they monitor millions of security events per hour to identify and maintain real-time risk assessment practices:
The ACSC Essential Eight Maturity Model will continue to be important in guiding organisations to systematically treat their security threats. Effective mitigation strategies that address:
remain essential for effective enterprise security management.
The speed to mitigation is now as important as the time to vulnerability detection itself. Organisations must establish effective risk operating models. Efficient mitigation teams and processes must promptly expedite any necessary mitigation strategies. IT and risk management teams working together can use this dynamic security information to more promptly protect their attack surface.
Clearly Frontier AI models will continue to automate a lot of things that humans can do, faster and more reliably. In response, enterprises must increase the rigour and tempo of security threat protection practices to protect themselves against operational disruption.
AI will hasten the discovery and exploitation of vulnerabilities everywhere. In response, regulators are urging improved attack surface protection with more diligence and timely gap detection and repair.
Mitigating a vulnerability before your attack surface is breached by an AI-assisted adversary will ensure your ongoing cyber resilience.
For more information on threat exposure management technology and what it delivers, refer to https://huntsmansecurity.com/capabilities/threat-exposure-management/.
If you want to transform you cyber security practices to meet these AI challenges head on, please Get in Touch.
Read by directors, executives, and security professionals globally, operating in the most complex of security environments.