Therefore investments cannot only be for a financial return, but they must be made in the knowledge that the non-security of each single intelligent device can be transformed into the non-security of the entire digital planet.
This strategy is well known to attackers who today are not only interested in compromising a service, but also in capturing devices that will be then used for subsequent attacks without causing any damage to the legitimate owner, who is often unaware.
Lastly, the gap between time, money and professional resources between those specialised in attacks and those who defend themselves against them, makes optimising investments into reducing the risks and damage of an attack fundamental.
Exprivia's CyberSecurity strategy has been developed with the aim of supporting clients in the process of digital transformation making its as secure as possible and compatible with the budget and with compliance and regulations It is based on sharing information, skills and awareness, consultancy services, protection activities, constant monitoring, the ability to respond to an attack and reinstate the service and knowledge of the industry in terms of processes and architecture.
Information sharing - The security of a process that requires constant adaptation to the attacking techniques used. Exprivia has created an Observatory that analyses incidents, attacks and privacy breaches in Italy that makes our services more efficient. We believe in sharing information every three months.
Awareness -The vulnerability most often exploited by attackers is the human factor, whose lack of awareness is the result of an acceleration in the digitalisation process which has not given a culture of security the chance to metabolise. Exprivia offers CyberSecurity literacy courses which are available on demand on the Udemy platform.
Expertise - We have a group of extremely skilled and certified analysts capable of studying and suggesting the correct technologies. We also have a catalogue of courses with the goal of transferring skills and knowledge which range from strictly technological aspects to courses about company processes and organisation from a security viewpoint. Lastly, we believe in certification of skills and so all our courses, once an exam has been passed, confer badges in compliance with the open badges 2.0 framework. Exprivia has also developed simulations (cyber-range) that can be used to evaluate a company's level of efficiency in responding to an attack.
The services offered by Exprivia are designed based on the security controls of the National Institute of Standards and Technology (NIST), and share the information provided by the Cybersecurity Observatory, divided into the following:
- Identify – From consultancy activities to Vulnerability and Penetration Tests (VAPT), from malvertisement campaign simulations to analysing and searching for data that may have been stolen and posted on the deep and dark webs. The objective is to suggest processes and controls to customers to reduce overall risk, by optimising investments.
- Protect – Implementation and management of controls that focus on protection from any incidents, segmentation, micro-segmentation, management and governance of identities and accesses, management of privileged identities, static (SAST) and dynamic application security (DASD), security, obfuscation and masking of data at rest and in transit.
- Detect – Continuous monitoring using SIEM and sophisticated AI tools able to identify the symptoms of an attack before it starts.
- Response – An incident should never occur, but if it does, then it is better to put yourself in the hands of experts who can reduce and sometimes repair the damage. Exprivia has a team than can be called upon to respond to an incident (Global Response Team).
- Restore – To restore a service after an attack is not the same as restoring a service disrupted because of adverse atmospheric agents. The GRT can be used not only to respond to an attack but to restore the service.
For all its services Exprivia is able to use the most appropriate delivery model, managing technologies and processes at its customers' premises but also from its own offices.
Knowledge of Industries
CyberSecurity has general concepts, but requires very specific knowledge about the architectures and processes used in industry. Exprivia has gained most of its success thanks to its knowledge of industrial processes and architectures, and today makes that knowledge available to its CyberSecurity services.