Prevention vs. Response - Cybersec Economics in the Modern Era
RSA Conference 2024 · Track Session
In a compelling talk at RSAC 2024, the presenter challenged the prevailing mindset in cybersecurity, arguing for a fundamental shift from an almost exclusive focus on **prevention** to a more robust and economically sound investment in **response**. Drawing parallels between physical world security and the digital realm, the speaker posited that while we instinctively prioritize preventing incidents, the unique characteristics of cyberspace – particularly the absence of effective global deterrence and the rise of state-sponsored attackers – render prevention an inherently insufficient strategy. The core message is that breaches are inevitable, and organizations must therefore pivot their resources towards minimizing the **impact** of these breaches through superior detection and response capabilities.