Cybersecurity isn't just the business of the future - it's the war of today. In this episode of Innovation In Compliance, Tom Fox and guest Patrick Hynds, CEO of Pulsar Security, delve into the world of cybersecurity and its implications for organizations of all sizes. From ransomware threats to the role of government in this expanding battlefield, Patrick discusses the evolution of cyber attacks, the importance of ongoing vigilance, and practical steps businesses can take to defend themselves. Patrick unpacks the concept of the 'Pyramid of Threats', and discusses why continuous network maintenance is crucial for cybersecurity. He also shares his predictions on the future of global cyber threats.
Patrick Hynds is a veteran-turned-technology entrepreneur with a distinct perspective on cybersecurity. An alumnus of the prestigious military academy at West Point, Patrick served as an infantry officer in the first Gulf War. His early affinity for programming, paired with the perspective gained from his military experience, propelled him into the field of technology. In 1996, he incorporated his company, Pulsar Security, which today is a leading provider of penetration testing services, enabling organizations to identify and address their vulnerabilities.
Tune in to hear Tom and Patrick talk about:
Cybersecurity is a necessity in today's interconnected world, impacting entities ranging from billion-dollar corporations to individual users.
Pulsar Security offers penetration testing or Red Team services, effectively operating as 'hackers for hire' to identify potential vulnerabilities in client organizations.
Cyberattacks are a persistent risk that need to be managed strategically, not just identified. It affects even the smallest organizations and individuals.
Pulsar Security's new product, Cyber Shield, is designed to help smaller organizations manage their cybersecurity at an affordable level.
There is a significant shortage of cyber engineers in the industry, with an estimated 3 million positions unfilled worldwide.
Awareness and education are key in enhancing cybersecurity. Simple actions like enabling two-factor authentication, managing passwords effectively, and regular patching can greatly improve security.
The role of government in the cyber realm is evolving, with agencies like SISA and NIST offering resources and guidelines to help organizations enhance their security posture.
Patrick and his team developed the "Pyramid of Threats" to help people envision the cybersecurity risks they face:
The bottom layer of this pyramid includes script kiddies who use easily obtainable scripts to exploit vulnerabilities in systems, often leading to data theft and sales on the dark web.
The next level up includes people with personal grudges who are tech-savvy enough to launch attacks. They tend to focus on specific targets, making them potentially more dangerous than the script kiddies.
The third layer of the pyramid consists of syndicates who are primarily financially motivated. They use similar tactics to script kiddies but tend to target systems with known vulnerabilities to launch ransomware attacks, steal identities, or mine Bitcoin.
"For these large organizations, we provide what's called penetration testing or Red Team services. We'll attack them on a regular basis, sometimes on a continuous basis, to see where their vulnerabilities are. Because you can't see your own vulnerabilities most of the time." - Patrick Hynds
"We've developed the thing called the Pyramid of Threats. …the Pyramid of Threats is meant to try to help people envision what the risks are, who's coming after you" - Patrick Hynds
"Unfortunately, I don't think people can forget about cybersecurity. That's never going to happen. It's not thinking about a media campaign. Companies don't have that luxury because the cat's out of the bag." - Patrick Hynds