Skip to content

Trending tags

7 cyber security principles to keep in mind in 2017

F-Secure Global

21.12.16 3 min. read

With less than two weeks to go until 2017, we’ve taken a look back at the past year in cyber security. In this post we discuss lessons learned from 2016, and what these developments mean for security professionals and the whole industry in 2017.

In short, what we’re seeing is that cyber security never stops. And it is exactly what makes cyber security so endlessly interesting and ruthlessly challenging all at once. To effectively predict, prevent, detect and respond to attacks, organizations must treat cyber security like a proactive process of continuous improvement – one that takes a holistic approach to cyber security:

  1. It takes man and machine to win.
    Attackers combine people, process and technology to get past your defences. You need the same thing – the right combination of people, process and technology to fend them off.
  2. Local and industry-specific expertise matters.
    It takes a very different approach to cyber security to protect a global brand’s intellectual property than it does to enforce security in aviation, or to secure online payments.

    Equally, cyber security practices and regulations differ between regions. For example, companies in the EU are busy preparing for EU’s General Data Protection Regulation that will enter into force in May 2018.

  3. You cannot ignore the latest threat intelligence.
    Keeping up with the latest threat intelligence can be a struggle. Applying it across the cyber security operation can be even tougher. But it’s a vital foundation for constantly improving your defenses. For more detailed tips on how to effectively predict the threat landscape, we recommend you to watch this webinar.
  4. Cyber security must be agile.
    Attackers can pivot in an instant, seizing new opportunities the moment they open up. To stay ahead of them, you need to be able to predict threats, prevent the vast majority of them, detect attacks when they do happen, and respond quickly and appropriately if you’ve been breached. The 360 degree approach to cyber security will still remain valid in 2017.
  5. A distributed attack surface calls for distributed security.
    Today’s mobile workforces depend on constant access to data and services through an ever-growing array of devices. It’s important to prioritize a centralized view of every endpoint in your networks. In addition, patching vulnerabilities is one of the most important measures you can take to prevent attacks. It’s low-hanging fruit and it gets the job done.
  6. Compliance is table stakes.
    Most large companies will be compliant with regulations, but it hasn’t prevented them from being breached. Regulations are an important starting point for cyber security. But cyber attackers move faster than regulators do. So a relentlessly proactive approach to cyber security is essential.
  7. You’re never done.
    If you take one thing away from this post, it is this: in cyber security, you’re never done. Your attackers will never relent. So your cyber security operation can never relent. You need a proactive process that’s designed to continuously improve and adapt. Only then can you effectively predict, prevent, detect and respond to incidents.

With these seven principles, we want to wish all our readers Merry Christmas and a successful New Year 2017!

F-Secure Global

21.12.16 3 min. read



2 comments on 7 cyber security principles to keep in mind in 2017
  1. Isabel says:

    As a new small business owner, I’m really glad I’ve come across this article! Business security has been a great concern of mine throughout the entire start up process of my company (particularly as this area is admittedly not my forte) so it’s always good to come across tips and advice! I particularly like your point about combining both people and technology for combating hacking. If I’m honest because I am so uninformed when it comes to system security – I’ve actually been considering getting some IT security software. Is this a recommendable course of action? I know that Ivanti offers this type of software. Would you recommend them? I’m a completely at sea when it comes to this type of thing so any advice you would be able to offer me at all would be greatly appreciated.

  2. Melissa Michael says:

    I don’t know about that company specifically, but yes, it’s a good idea to get IT security software. You can get started checking out our offerings at Contact us for help choosing what you need for your particular business!

Comments are closed.

Leave a comment

Oops! There was an error posting your comment. Please try again.

Thanks for participating! Your comment will appear once it's approved.

Posting comment...

Your email address will not be published. Required fields are marked *

Highlighted article

Top 3 OPSEC tips for 2020

Joel Latto


3 min. read

Related posts

Newsletter modal

Thank you for your interest towards F-Secure newsletter. You will shortly get an email to confirm the subscription.

Gated Content modal

Congratulations – You can now access the content by clicking the button below.