By Kris Lovejoy, Kyndryl Global Practice Leader for Security & Resiliency
Cybercrimes continue to rise around the globe, affecting public and private organizations of all sizes. So it’s little wonder that 88 percent of company boards consider cyber risks to be just as important as financial or legal risks.
With other corporate pressures also needing attention — compliance and regulatory requirements, worker skills shortages, inflation and general interconnectedness of digital systems, networks and economies, to name a few — business leaders are smartly looking for new ways to navigate these challenges.
The Ever-Changing Cybersecurity Environment
To help mitigate cyber security and compliance risks, many businesses will invest in security solutions and services for proactive detection and prevention of cyber threats, as well as reactive incident response and recovery to protect critical business systems. Managed security services are traditionally focused on implementing, optimizing, or operating security technology within a very fragmented market with established vendors.
The average business uses a considerable number of disparate security tools with little integration, each relying on the same data and workflow processes. Such a disaggregated approach doesn’t allow cyber threat data to be interpreted quickly, which further complicates an already complex threat landscape. In addition, siloed cloud security controls have exacerbated the complexity. All of this has resulted in an evolving and challenging security operations environment.
A Security-rich Cyber Security Infrastructure
AWS and Kyndryl partnered in November to support growing customer demand for greater visibility and faster execution of threat intelligence. This is a co-creation opportunity to develop a state-of-the-art data lake designed for security and based on the Open Cybersecurity Schema Framework (OCSF), which is intended to allow customers to view in a single pane of glass security posture and accelerate decision making capabilities. The goal is to create a unified customer-focused solution that leverages multiple use cases such as cybersecurity, compliance and resilience, and offers dedicated infrastructure that Kyndryl will manage aligned with Amazon Security Lake.
For businesses, this is an opportunity to break down technology silos unifying disparate systems and data. This teaming and co-development effort with AWS will focus on an approach that minimizes false positives, and reduces time and money devoted to detecting and resolving a major incident; integrates traditional and emerging security capabilities into a highly integrated, cohesive and agile operation; and integrates cyber and recovery to resiliency, which minimizes the downtime of a cyber event.
Powered by Amazon Security Lakes, Kyndryl Bridge and the OCSF, the Kyndryl Security Operations Platform with AWS is intended to provide faster time to detection and response and orchestrated security intelligence driven by industry standards and best practice methods. Kyndryl cyber experts manage the infrastructure and monitor the environment for security events. In the event of a major cyberattack, Kyndryl will implement recovery platforms to ensure minimal interruptions to the core business platforms.
As businesses continue to navigate ongoing cyber threats with complex IT infrastructure, Kyndryl and AWS are aligning skills and expertise with a security-rich cloud platform to help support security resilience for our customers.