Sophos’ Manager in West Africa, Jimi Falaiye, speaks about the effect of ransomeware persistent threats on organisations and the need for organisations to consult cybersecurity experts in addressing such threats, among other industry issues. Emma Okonji presents the excerpts:
What are the major issues organisations are facing regarding cybersecurity?
Today, cybersecurity is so complex and difficult and moving so fast that the vast majority of organisations shouldn’t even try to manage it themselves anymore. It’s just too hard. Our view is that they should turn to experts who can help provide cybersecurity as-a-service for them.
With the advances in technologies like Cloud Computing, Cloud Management, Artificial Intelligence (AI), Big Data, APIs and Interoperability, we now have the ability to deliver cybersecurity as-a-service. We believe cybersecurity as-a-service is going to be the predominant way that organisations consume cybersecurity within the next several years. We found out that a lot of organisations don’t have the right tools or staffing needed to stop or curb cyberattacks. Many in-house security teams simply can’t keep up with the fast pace of changing attacks, and this issue is not just in Nigeria, and it is not just in West Africa too. It is a global issue whereby organisations need updated security tools along with an additional layer of detection and response services from experts who are trained to handle attacks at every step of the attack chain. Since ttacks are a 24/7 operation, organisations need a team of trained analysts constantly monitoring and responding to their environment.
Are you advocating that organisations should outsource their cybersecurity needs, irrespective of whether the organisations could have in-house cybersecurity staff?
Yes, outsourcing gives organisations the opportunity to focus more on their staff and on other sets of responsibilities and on their core business. We have a Managed Detection and Response (MDR) service that fuses machine learning with human analysis for an evolved, innovative approach to proactive security protection, and combines Sophos’ top-rated endpoint protection and data-driven XDR with a world-class team of experts to counteract and prevent threats.
Sophos MDR is available to businesses of all sizes, including the small and mid-sized organisations that have struggled in accessing traditional services designed for enterprises. Sophos Intercept X with XDR combines anti-ransomware technology, deep learning artificial intelligence, exploit prevention, and active adversary mitigations to stop attacks.
Most times, Sophos do release cybersecurity reports which showcase scary figures. How do you arrive at the figures and what are the yardsticks used in measuring cybersecurity incidents?
Like I mentioned earlier, 66 per cent of organisations that we surveyed globally for our 2023 annual report, were hit by ransomware. Our global survey also shows that when organisations paid a ransom to get their data decrypted, they ended up additionally doubling their recovery costs, which is about $750,000 in recovery costs versus $375,000 for organisations that used backups to get data back. Moreover, paying the ransom usually meant longer recovery times, with 45 per cent of those organisations that used backups recovering within a week, compared to 39 per cent of those that paid the ransom.
Nigeria is an emerging country with a dynamic economy. New enterprises are created every day. These organisations need to be supported against more and more sophisticated attacks using AI for instance. They don’t have the necessary experts internally. A skilled managed service team would be able to handle the situation and deploy the adapted tools in case of attacks.
Comparing the figures from these reports what do you foresee as the future of IT firms in Africa?
In our recent Active Adversary Report (AAR) for Business Leaders, published in April, we analysed data from more than 150 Sophos Incident Response (IR) cases. We found that the most common causes of attacks were unpatched vulnerabilities and compromised credentials. The threat environment has grown exponentially in volume and complexity. For most organizations, the days of going at it alone are well behind them. However, there are tools and services available to businesses that can alleviate some of the defensive burden, allowing them to focus on their core business priorities.
.
Sophos has over time, warned organisations about cybersecurity threats, but emerging markets seem not to be adhering to such warning. Could it be that there is no trust emanating from the organisations, and what do you think should be done?
In Nigeria, we operate within the policies and regulations that guide cybersecurity solution provisioning in accordance to international standards. So in terms of transparency and trust, there are standardised compliances by third parties that providers must abide by. We comply with the ISO- International Standard Organisation’s guidelines. We are also GDPR compliant, and in Nigeria it’s called NDPR, which regulates the amount of user data we are allowed to interface with and to keep. You mentioned a critical factor: the trust. Trust is built over time. These compliance and enforcement regulations have helped to build trust.
How much investment has Sophos made in this regard, and what is the level of partnership you have with the regulators to ensure key sensitisation for understanding of developments in cybersecurity?
We have done critical partnerships with some of the government agencies and we are still in talks with some of them. We are working hard to form strategic alliances to standardise frameworks that will impact, not just businesses, but the whole vertical markets. In some cases we choose a blanket framework approach and in others we will have a strategic framework. We are investing in these different kinds of partnerships because they help us to enhance industry compliance. For instance, we have a customer that is developing a cybersecurity framework for the financial sector to better secure customers and the institutions themselves. We expect to have similar frameworks for the manufacturing and education sectors, or for any sector that is IT driven.
Can you tell us some of your solutions that are driving and protecting the Nigerian market space?
We have several solutions. Sophos endpoint security stops ransomware, phishing and advanced malware attacks in their tracks. Sophos combines the industry’s leading malware detection and exploit protection with extended detection and response (XDR) to secure customers. Powerful AI using deep learning along with managed threat detection services will protect against both new and old threats. Sophos Endpoint has been named a Leader in the 2022 Gartner Magic Quadrant for Endpoint Protection Platforms (EPP) for the 13th consecutive year.
In addition, Sophos MDR provides advanced cybersecurity services from a team of Sophos experts 24/7. Sophos has 550,000 customers globally in different sectors, which include government, financial, education, manufacturing, services, and more.
How affordable are your solutions for SMBs and enterprise organisations?
We provide advanced cybersecurity solutions to organisations of all sizes , including cybersecurity as-a-service to organisations needing fully-managed, turnkey security solutions. Customers can also manage their cybersecurity directly with Sophos’ security operations platform or use a hybrid approach by supplementing their in-house teams with Sophos’ services, including threat hunting and remediation.
