ConnectWise CISO On R1Soft Vulnerability: We Have Some Work To Do
‘One of our big goals is transparency through what we do with our own stuff,’ says ConnectWise CISO Patrick Beggs.
What are you going to focus on in 2023?
On vulnerability management side we‘ve made huge strides this year. We’ve killed it. [We put] people, processes and technologies in place to really be successful going forward. That was one of my biggest pushes when I got here. We‘re going to be doing threat hunting and routine analysis in house as well. We also are starting to build this dossier of folks that understand our products because they use them so much, and we’re building good relationships. We know we‘re not going to get burned if we reach out and say, ‘Hey, we’re seeing something internally that we‘re not sure what it is. Can you maybe take a look at what it might be?’
We’re going to be red teaming where it‘s hardcore cyber experts that basically try to break into our own networks. Threat hunting is more internal looking for behavior that exists but that shouldn’t be there. The red teamers are doing more fun jobs in cyber. It‘s one of the more coveted jobs. You’re a hacker.