Malvertising, Ransomware and the Evolution of Cyber ThreatsJustin Dolly of Malwarebytes on How Security Leaders Must Improve Their Game
According to one report, barely one-third of global organizations feel prepared to handle a modern cyberattack such as malvertising or ransomware. Justin Dolly of Malwarebytes explains how security leaders can step up their game in 2017.
Dolly, who is both CIO and CISO at Malwarebytes, says he is not surprised by this admission of vulnerability by global security leaders.
"All security organizations, regardless of the [enterprise] that they are bound to protect, are on a journey, and the journey is seldom a short one," Dolly says. "So depending on the timing of an attack, a security team's ability to respond in an intelligent and efficient way is really very much dependent on where they are on the journey."
Even organizations with mature security organizations - a decade or more experience - often find themselves caught flat in the face of evolving threats such as ransomware, Dolly says. He sees this every day.
"At the end of the day, it's not surprising to me that two-thirds feel they are not positioned well to deal with a modern attack."
In an interview about responding to the latest iteration of security threats, Dolly discusses:
- Why only 38 percent of global organizations are prepared to handle a modern cyberattack;
- How ransomware, malvertising and other threats change the landscape;
- New strategies and tools to improve defenses.
Dolly joined Malwarebytes as the company's first CISO. He brings close to 20 years of experience in advanced information, infrastructure, web and application security, as well as risk management, network engineering and design. Prior to Malwarebytes, Justin was the VP, Chief Security and Privacy Officer at Jawbone, where he oversaw the security and privacy implications of consumer wearable technology. He also held the Vice President and Chief Information Security Officer position at Service Now, where he provided strategy and vision for all Information security-related initiatives. Before that, Justin was the CISO at VMware Inc., where he developed and led all information security-related programs and initiatives. Previously, he held various security and technology leadership roles at Kaiser Permanente, CNET/CBS Interactive and Macromedia.