Wednesday 26th January 2022

Assume Breach Strategy presentation – Jisc Security Conference 2021

Our Senior Network Engineer Duncan Ross recently presented on day 2 of the virtual Jisc Security Conference 2021, which ran 9th – 11th November 2021.

Duncan delivered an insightful presentation on the Assume Breach Strategy, and explained how IP Performance have helped their customers to implement this approach to Cyber Security.

Duncan discussed how the strategy has been incorporated into our SOCITM-approved Cyber Breach Workshop, our Swarm-SecOps security service and also specialised tools from our wider vendor portfolio such as Pentera’s Automated Security Validation platform. You can watch a recording of the presentation below:

So, what does Assume Breach mean? 

It simply means that despite the confidence we have in our defensive protections, we assume adversaries and malicious actors can and will find a way to penetrate security defences, and then plan accordingly.

The strategy is comprised of 3 core pillars – War Games, Centralised Logging & Monitoring and Penetration Testing. 

The Assume Breach Strategy enables security defences to be seen and evaluated from an attackerā€™s perspective, and includes penetration testing alongside other security tests to both discover and fix security vulnerabilities. By taking the ā€˜Assume Breachā€™ approach, organisations can proactively design and implement improved technical capabilities and also softer processes, enabling them to react quickly and efficiently during a (likely inevitable) cyber security or breach incident. 

Please get in touch below, our friendly team of security experts will be pleased to explain how you and your organisation can also benefit from the assume breach methodology:

  • I have worked with IP-Performance for over 20 years and have always found them to be knowledgeable, helpful, prepared to go above and beyond and always right on the edge of modern technology and trends. So, when they suggested we might want to let them do an internal security audit, we jumped at the chance and the results were nothing short of jaw droppingā€¦ I would recommend anyone take a look at their portfolio, even if you think you have all your security bases coveredā€¦ Trust me, you havenā€™t. I would recommend the portfolio, and anything that IP-P do to anyone across the industry. The breadth of what they cover is astounding.

    David Brazewell, Technical Director,
    QubeGB Ltd.