By James Holley and Jeff Spivey | The Wall Street Journal
Is your company prepared for an all-out assault on its intellectual property? Most companies aren’t.
The threat landscape has progressed over the last two decades from hackers and novice script kiddies to today’s state-sponsored attacks. Enterprises are being attacked because of who they are, what they do and the value of their intellectual property. But they are responding with security controls that are years out of date.
The traditional response to cyberthreats used to be—and too often still is—“Prevent, Detect and Respond.” But prevention is no longer realistic and should be removed from the cybersecurity dictionary. Enterprise resources must be shifted to focus instead on detection and response. ISACA (formerly the Information Systems Audit and Control Association), a global association of security, assurance and risk professionals, recently conducted an international survey on the advanced persistent threat (APT). It found that one in five enterprises has already experienced an APT attack (that they know of), and an additional 63% of respondents believe it is only a matter of time. These days, if your organization has intellectual property that is cheaper for another entity to steal than to create on their own, you have to assume your systems have already been infiltrated by attackers—or soon will be.
Also: Samsung sets up a US patent office to protect its intellectual property
If you’d like to discuss intellectual property issues, contact Robert Iussa, chair Rose Law Group Intellectual Property Dept., riussa@roselawgroup.com rhurley@roselawgroup.com