Cyber Insights 360 Private and confidential June 2021
Introduction
Market need
Today the mandate for the Chief Information Officer (CIO), Chief Information Security Officer (CISO), and other security leaders has gone way beyond security operations. They work with diverse areas, such as digital transformation, mergers & acquisitions, OT security, security life cycle, and compliance and audits, in addition to traditional cyber operations. The resultant deluge of cyber data received from various tools is fragmented and available in individual reports, resulting in a lot of time and human effort in collating this data and rendering it on visualisation dashboards.
Security leaders need an integrated solution that: Enables the extraction of real-time data from various security tools Classifies data based on KPIs, organisational view, and scoring metrics
Helps load data into cyber data lakes Renders data in the form of dashboards for the CISO and the management
- Our solution Cyber Insights 360 is an integrated cyber analytics solution that enables the CIO and CISOs to get a 360-degree view of their security posture. The solution provides a correlation between transactional data and data from cyber data sources to provide enhanced insights. It is available on cloud platforms like AWS, Private Cloud or Azure, and leverages services and tools from them. It is also integrated with custom-built external connectors and platforms, such as Robotic Process Automation (RPA) and scripting. It renders advanced visualisation dashboards through tools such as Amazon Quick Site, Tableau and Microsoft Power BI.
Cyber Insights 360 comes with the following views:
Business unit viewProvides a view of the cyber security posture from a business unit perspective
CISO dashboard – Provides a 360-degree view of the security posture of the organisation
Cyber lead view- Provides granular insights into the organisation’s cyber leads for them to see how their portfolio is performing
Cyber operations view Provides integrated dashboards that allow data from multiple responsibility areas to be correlated
Transformational programmes view – Provides integrated dashboards that are focused on transformation initiatives of the organisation
Cyber vendors SLA view – Provides insights on the performance of cyber vendors, who support the cyber infrastructure
Key features of Cyber Insights 360 • Re-aligns cyber KPIs and KRAs, based on data-driven insights for the organisation • Renews cyber data sources and renders new views through its flexible and agile framework • Requires minimum development and is easily configurable based on the number of cyber data sources, KPIs to be tracked, and views required • Deployable on Deloitte Cloud Services – AWS/ Azure/ Private Cloud or on the client instance of the Cloud • Possesses a strong knowledge base due to integration with Intelligent Risk Assistant platform that provides years of insights mined by Deloitte in the cyber security area • Integrates with Deloitte platforms like Intelligent Risk Assistant and Trygna to integrate and drive correlation with assessment transactional data and product data
Benefits • • • • •
Provides a 360-degree view of the security posture to drive organisations from being reactive to proactive Reduces time taken to respond to changes in the environment, from several weeks to a few days Reduces time on reporting by almost 70 percent Enables real-time updates to the cyber leaders, technology leaders, BU heads, leadership, and the board Drives development of a strategy for the cybersecurity of an organisation, and helps make critical decisions on cyber assets
Connect with us
Rohit Mahajan President, Risk Advisory rmahajan@deloitte.com
Maninder Bharadwaj Partner, Risk Advisory manbharadwaj@deloitte.com
Gaurav Shukla Partner, Risk Advisory shuklagaurav@DELOITTE.com
Contributors Dr. Vikram Venkateswaran
Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see www.deloitte.com/about for a more detailed description of DTTL and its member firms. This material is prepared by Deloitte Touche Tohmatsu India LLP (DTTILLP). This material (including any information contained in it) is intended to provide general information on a particular subject(s) and is not an exhaustive treatment of such subject(s) or a substitute to obtaining professional services or advice. This material may contain information sourced from publicly available information or other third party sources. DTTILLP does not independently verify any such sources and is not responsible for any loss whatsoever caused due to reliance placed on information sourced from such sources. None of DTTILLP, Deloitte Touche Tohmatsu Limited, its member firms, or their related entities (collectively, the “Deloitte Network”) is, by means of this material, rendering any kind of investment, legal or other professional advice or services. You should seek specific advice of the relevant professional(s) for these kind of services. This material or information is not intended to be relied upon as the sole basis for any decision which may affect you or your business. Before making any decision or taking any action that might affect your personal finances or business, you should consult a qualified professional adviser. No entity in the Deloitte Network shall be responsible for any loss whatsoever sustained by any person or entity by reason of access to, use of or reliance on, this material. By using this material or any information contained in it, the user accepts this entire notice and terms of use. ©2021 Deloitte Touche Tohmatsu India LLP. Member of Deloitte Touche Tohmatsu Limited