Kevin Davis, vice president of public sector at Splunk, has said government chief information officers and security officials should adopt an “analytics-driven approach” toward cybersecurity in order to facilitate real-time intelligence collection and gain more insight into their agencies’ networks.
Davis wrote that implementing an analytics-driven method would require government CIOs to leverage machine data analysis that takes into consideration records of activities related to applications, devices, servers and networks as well as user behavior.
“Viewing information as individual, siloed data sets may not provide much value, but bringing that data together to provide an enterprise-level picture is extremely valuable for decision makers, ” he added.
He noted that such an approach could also help agencies address operational issues associated with information technology systems and expedite the delivery of services to citizens.
Davis called on federal CIOs and security professionals to understand the current cyber threat environment such as external and insider threats within agencies.
Government agencies should also collaborate with industry to update their cybersecurity strategies in order to protect their networks amid evolving cyber threats, he stated.