sb-as logo
Story image

Flashpoint: Contextual data key to effective security

04 Feb 2019

Article by Flashpoint customer success senior director Glenn Lemons

For executive protection teams tasked with safeguarding business leaders in an increasingly complex threat landscape, having rapid access to relevant information is essential.

But as more threat actors shift operations online—and often to illicit, exclusive communities and platforms—many of the insights most useful to executive protection teams are becoming decentralised and difficult to access.

These challenges highlight the need for executive protection teams to augment their operations with a crucial resource: ‘finished intelligence’.

Widely considered the most consumable type of intelligence, finished intelligence is derived from timely, relevant data that has been deeply analysed, contextualised, and presented alongside all details needed to inform decisions.

Producing finished intelligence requires extensive resources, expertise, and bandwidth.

The following examples demonstrate why finished intelligence is an invaluable investment for executive protection teams:

Overcoming ‘analysis paralysis’ to make informed decisions

When sending prominent individuals to international destinations or high-profile events, executive protection teams must proactively establish an appropriate level of physical protection in a manner that is tactful and unobtrusive.

This requires a holistic awareness of the situation at hand and related risks but given the potentially overwhelming volume of noise or misinformation surrounding emerging developments, teams may struggle to determine which information is accurate and relevant.

As such, ‘analysis paralysis’, the stalling of key decisions in order to gather and analyse information, is a common pitfall for executive protection teams.

Moreover, without specialised subject matter expertise and visibility into illicit communities, these teams may be basing decisions on only a partial understanding of the risks they face.

By leveraging finished intelligence gathered by external subject matter experts, executive protection teams no longer need to waste time sifting through un-curated data.

This buys back resources for teams to focus on establishing appropriate defence measures based on comprehensive, accurate, and relevant information.

Communicating with stakeholders across the organisation

In order to justify their decisions and gain access to necessary resources, executive protection teams must effectively communicate risk to relevant stakeholders across the organisation.

But without concise reporting created with high-level consumption in mind, stakeholder communication can be yet another roadblock preventing executive protection teams from taking quick and effective action.

‘Finished intelligence’ reports are designed for dissemination to high-level stakeholders, offering bulleted key takeaways highlighting need-to-know information without having to read through a full report, followed by lengthier, more detailed reporting of interest to front-line defenders.

This eliminates the need to further distil intelligence for internal audiences, freeing up additional time for building an effective defence strategy.

Assessing executives’ online exposure

The internet’s integral role in daily life can lead to a surprising wealth of information about individuals ending up online, and business leaders are no exception.

As such, in a broader, strategic sense, executive protection extends beyond physical security to encompass digital exposure as well.

It is crucial for organisations to be aware of any potentially damaging or sensitive information pertaining to executives available online.

However, since personal data may be spread across various social media platforms, web archives, and in some cases, illicit dark web communities, many teams lack the capacity or ability to fully assess online exposure.

To address this capabilities gap, organisations can leverage individualised executive exposure reports gathered by external analysts to assess what information is out there and determine appropriate mitigation measures and contingency plans.

Given the importance of protecting business leaders and their data, failure is not an option when it comes to acknowledging and anticipating relevant threats.

Story image
Surfshark rolls out WireGuard open source VPN protocol
When there is less code in a VPN, it is less susceptible to security vulnerabilities due to easier configuration and management, according to Surfshark.More
Story image
Why zero trust could fail due to lack of understanding​, not technology
Security architects are being forced to re-examine the concept of identity, with many turning to a zero trust security model to provide a better architecture for protecting their sensitive resources.More
Story image
Security and operations collaboration key to success post COVID-19
“We are in an ultra-hybrid world with multi-everything, and in order to successfully navigate this landscape, ITOps, DevOps, and SecOps teams need to more closely align."More
Story image
Why best-practice threat data management provides confident automation
Understanding an organisation’s threat landscape requires having both the right threat data sources and the proper prioritisation to derive actionable threat intelligence for your organisation. More
Story image
Microsoft is most imitated brand for phishing attacks in Q3
Popular phishing tactics using the Microsoft brand used email campaigns to steal credentials of Microsoft accounts, luring victims to click on malicious links which redirect them to a fraudulent Microsoft login page. More
Story image
Gartner reveals the top strategic tech trends for 2021
“CIOs are striving to adapt to changing conditions to compose the future business - this requires the organisational plasticity to form and reform dynamically. Gartner’s top strategic technology trends for 2021 enable that plasticity.”More