Incident & Breach Response , Next-Generation Technologies & Secure Development , Security Operations

Avoiding 'Alert Fatigue'

Former NSA CISO Chris Kubic on Making Alerts Meaningful
Chris Kubic, CISO at Fidelis Cybersecurity

The key to reducing "alert fatigue" is to make sure alerts are repeatedly validated before they're distributed, says Chris Kubic, CISO at Fidelis Cybersecurity, who formerly served as CISO at the U.S. National Security Agency.

See Also: Combat IT Team Burnout by Embracing Automation

Alerts, he says, should be "validated across multiple points across your network so that you have higher confidence this is something malicious and not just some anomalous activity." Also, the alerts should be provided with context - supporting information - to help the security operations team, he adds.

In a video interview with Information Security Media Group, Kubic also discusses:

  • How XDR - extended detection and response - needs to be implemented;
  • What key factors to look for in an XDR solution;
  • How to manage alerts more effectively.

Kubic, CISO at Fidelis Cybersecurity, previously was CISO at the NSA. He has more than 30 years of experience in information assurance and cybersecurity initiatives across the U.S. Department of Defense, Intelligence Community and other federal government sectors.

About the Author

Suparna Goswami

Suparna Goswami

Associate Editor, ISMG

Goswami has more than 10 years of experience in the field of journalism. She has covered a variety of beats including global macro economy, fintech, startups and other business trends. Before joining ISMG, she contributed for Forbes Asia, where she wrote about the Indian startup ecosystem. She has also worked with UK-based International Finance Magazine and leading Indian newspapers, such as DNA and Times of India.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.