Story image

Flashpoint: Contextual data key to effective security

04 Feb 2019

Article by Flashpoint customer success senior director Glenn Lemons

For executive protection teams tasked with safeguarding business leaders in an increasingly complex threat landscape, having rapid access to relevant information is essential.

But as more threat actors shift operations online—and often to illicit, exclusive communities and platforms—many of the insights most useful to executive protection teams are becoming decentralised and difficult to access.

These challenges highlight the need for executive protection teams to augment their operations with a crucial resource: ‘finished intelligence’.

Widely considered the most consumable type of intelligence, finished intelligence is derived from timely, relevant data that has been deeply analysed, contextualised, and presented alongside all details needed to inform decisions.

Producing finished intelligence requires extensive resources, expertise, and bandwidth.

The following examples demonstrate why finished intelligence is an invaluable investment for executive protection teams:

Overcoming ‘analysis paralysis’ to make informed decisions

When sending prominent individuals to international destinations or high-profile events, executive protection teams must proactively establish an appropriate level of physical protection in a manner that is tactful and unobtrusive.

This requires a holistic awareness of the situation at hand and related risks but given the potentially overwhelming volume of noise or misinformation surrounding emerging developments, teams may struggle to determine which information is accurate and relevant.

As such, ‘analysis paralysis’, the stalling of key decisions in order to gather and analyse information, is a common pitfall for executive protection teams.

Moreover, without specialised subject matter expertise and visibility into illicit communities, these teams may be basing decisions on only a partial understanding of the risks they face.

By leveraging finished intelligence gathered by external subject matter experts, executive protection teams no longer need to waste time sifting through un-curated data.

This buys back resources for teams to focus on establishing appropriate defence measures based on comprehensive, accurate, and relevant information.

Communicating with stakeholders across the organisation

In order to justify their decisions and gain access to necessary resources, executive protection teams must effectively communicate risk to relevant stakeholders across the organisation.

But without concise reporting created with high-level consumption in mind, stakeholder communication can be yet another roadblock preventing executive protection teams from taking quick and effective action.

‘Finished intelligence’ reports are designed for dissemination to high-level stakeholders, offering bulleted key takeaways highlighting need-to-know information without having to read through a full report, followed by lengthier, more detailed reporting of interest to front-line defenders.

This eliminates the need to further distil intelligence for internal audiences, freeing up additional time for building an effective defence strategy.

Assessing executives’ online exposure

The internet’s integral role in daily life can lead to a surprising wealth of information about individuals ending up online, and business leaders are no exception.

As such, in a broader, strategic sense, executive protection extends beyond physical security to encompass digital exposure as well.

It is crucial for organisations to be aware of any potentially damaging or sensitive information pertaining to executives available online.

However, since personal data may be spread across various social media platforms, web archives, and in some cases, illicit dark web communities, many teams lack the capacity or ability to fully assess online exposure.

To address this capabilities gap, organisations can leverage individualised executive exposure reports gathered by external analysts to assess what information is out there and determine appropriate mitigation measures and contingency plans.

Given the importance of protecting business leaders and their data, failure is not an option when it comes to acknowledging and anticipating relevant threats.

Exclusive: Ping Identity on security risk mitigation
“Effective security controls are measured and defined by the direct mitigation of inherent and residual risk.”
CylancePROTECT now available on AWS Marketplace
Customers now have access to CylancePROTECT for AI-driven protection across all Windows, Mac, and Linux (including Amazon Linux) instances.
D-Link A/NZ launches new home wireless surveillance kit
The Omna Wire-Free Full HD cameras and accompanying Wi-Fi Hub offer a number of new features, including Alexa/Assistant support.
CSOs - are you prepared for cloud cryptojacking?
A recent report found that almost half of the organisations surveyed have malware in one of their cloud applications.
Cryptomining apps discovered on Microsoft’s app store
It is believed that the eight apps were likely developed by the same person or group.
WhatsApp users warned to change voicemail PINs
Attackers are allegedly gaining access to users’ WhatsApp accounts by using the default voicemail PIN to access voice authentication codes.
Swiss Post asks public to hack its e-voting system
Switzerland’s postal service Swiss Post is inviting keen-eyed security experts and white hats to hack its e-voting system.
Spoofs, forgeries, and impersonations plague inboxes
It pays to double check any email that lands in your inbox, because phishing attacks are so advanced that they can now literally originate from a genuine sender’s account – but those emails are far from genuine.