Cybersecurity: Getting Serious About Safeguards

Attacks on large companies make headlines, but smaller companies, too, suffer cyberattacks. Here’s how to protect your business.

The advantage of dealing directly with a security firm as opposed to a neutral third-party is that it may possess deeper expertise. “It’s the difference between going to a medical generalist and a specialist,” says Joshua Goldfarb, chief technology officer of FireEye in Milpitas, California, which has emerged as one of the most visible Internet security firms. “If you have a cold or fever, you might go to a general practitioner. But if you need orthopedic surgery, you’re going to go to an orthopedic surgeon. We’re the surgeon. A new customer can tap into all the experience we have built up over a decade of experience as an organization.”

Last year, FireEye, which markets its own hardware and software, acquired a highly specialized computer forensics firm, Mandiant, that has been a leader in identifying and tracking government-sponsored or government-sanctioned hacking organizations, particularly from China.

It calls those organizations Advance Persistent Threats (APTs.) That acquisition enables FireEye to help its customers anticipate the “threat vectors” coming from other countries. Altogether, it has 3,700 customers in 67 countries.

“If an attacker wants to come after you, they will find a way in.”

FireEye’s core offering is what it calls a “virtual execution engine” complemented by dynamic threat intelligence to identify and block cyber-attacks in real time. “But if a company wants to partner with us, to operate in the world we live in, then we are happy to offer our solutions as a service,” Goldfarb adds.

Goldfarb offers CEOs two pieces of advice. The first is to adopt a balanced approach toward security, which is part prevention, part detection and part response. If a bad guy wants to get into your systems, the chances are that he can—no matter what prevention measures are in place. One reason is that traditional perimeter-based defenses are breaking down, partly because of more distributed computing systems and partly because of the proliferating use of handheld devices.

“If an attacker wants to come after you, they will find a way in and we need to mitigate the incident before the attacker is able to get the information he wants,” Goldfarb advises.

The second is to find a security partner who understands your business and takes a systematic approach to defending it, rather than merely trying to apply Band-Aids. “A partner should approach security in a holistic way,” he says. “If the discussion consists of a bunch of buzz words and tactical type approaches that are not guided by an overall strategic approach, it may not be an adequate partner.”

The bottom line? If you haven’t adopted an Internet security strategy, it’s way past time to get started.

Sidebar: How I Survived a Cyber Attack by the Chinese Military


  • Get the CEO Briefing

    Sign up today to get weekly access to the latest issues affecting CEOs in every industry
  • upcoming events


    Strategic Planning Workshop

    1:00 - 5:00 pm

    Over 70% of Executives Surveyed Agree: Many Strategic Planning Efforts Lack Systematic Approach Tips for Enhancing Your Strategic Planning Process

    Executives expressed frustration with their current strategic planning process. Issues include:

    1. Lack of systematic approach (70%)
    2. Laundry lists without prioritization (68%)
    3. Decisions based on personalities rather than facts and information (65%)


    Steve Rutan and Denise Harrison have put together an afternoon workshop that will provide the tools you need to address these concerns.  They have worked with hundreds of executives to develop a systematic approach that will enable your team to make better decisions during strategic planning.  Steve and Denise will walk you through exercises for prioritizing your lists and steps that will reset and reinvigorate your process.  This will be a hands-on workshop that will enable you to think about your business as you use the tools that are being presented.  If you are ready for a Strategic Planning tune-up, select this workshop in your registration form.  The additional fee of $695 will be added to your total.

    To sign up, select this option in your registration form. Additional fee of $695 will be added to your total.

    New York, NY: ​​​Chief Executive's Corporate Citizenship Awards 2017

    Women in Leadership Seminar and Peer Discussion

    2:00 - 5:00 pm

    Female leaders face the same issues all leaders do, but they often face additional challenges too. In this peer session, we will facilitate a discussion of best practices and how to overcome common barriers to help women leaders be more effective within and outside their organizations. 

    Limited space available.

    To sign up, select this option in your registration form. Additional fee of $495 will be added to your total.

    Golf Outing

    10:30 - 5:00 pm
    General’s Retreat at Hermitage Golf Course
    Sponsored by UBS

    General’s Retreat, built in 1986 with architect Gary Roger Baird, has been voted the “Best Golf Course in Nashville” and is a “must play” when visiting the Nashville, Tennessee area. With the beautiful setting along the Cumberland River, golfers of all capabilities will thoroughly enjoy the golf, scenery and hospitality.

    The golf outing fee includes transportation to and from the hotel, greens/cart fees, use of practice facilities, and boxed lunch. The bus will leave the hotel at 10:30 am for a noon shotgun start and return to the hotel after the cocktail reception following the completion of the round.

    To sign up, select this option in your registration form. Additional fee of $295 will be added to your total.