Sony Goes From Having Only 4 Security Employees to Super-Serious
March 12, 2012 3:22 PM
comment(s) - last by
Leading the transformation are security leaders like ex-McAfee chief Brett Wahlin, now Sony's CSO
Sony Corp. (
) surprisingly has not been digitally attacked [
] by hackers for some time now. No,
hasn't discovered a new love for the Japanese gadget maker. Rather, Sony has finally stepped up to the plate in terms of
spending on security
and encouraging innovative visions to protect its massive worldwide customer base.
In terms of customers, Sony is one of the world's few firms that can claim to have
hundreds of millions of customers
on platforms that it solely designs. Only a handful of other firms -- Microsoft Corp. (
), Apple, Inc. (
), and Google Inc. (
) share this kind of position. Moreover, Sony -- along with Microsoft -- was an early proponent of online console gaming with its PlayStation Network.
Yet, according to a terrific
, in 2011 -- before the string of intrusions -- Sony's number of security-specific employees worldwide could be
counted on one hand
-- 4. No, they aren't joking.
Pair an internet oriented firm with virtually no security and then mix in a hate-vendetta by
and what do you get? It doesn't take rocket science to see why Sony became the laughingstock of the security world in 2011.
But amid the debacle the company's leadership woke up. Their most important decision was to hire former McAfee security officer Brett Wahlin as its chief security officer. The security games by
-- particularly their highly successful social engineering efforts -- were nothing new to Mr. Wahlin. After all, he started his career during an eight-year stint with the U.S. military during the Cold War era.
Sony's new security chief honed his craft battling the Russians and Chinese.
[Image Source: Asia Society]
He recalls in the interview, "You start to see a lot of similarities to the social engineering tradecraft in the Cold War... they have a discrete set of characteristics and targets and if we can begin to adapt some of the pattern recognition to a digital-based [environment]... we may be able to detect fraud more effectively."
Under Mr. Wahlin's leadership a new security operations center (SOC) has been created, in partnership with security contractor ArcSight, Inc. and hardware provider Hewlett-Packard Comp. (
). The Sony CSO hopes to emulate the successes of top security teams like the Microsoft Trustworthy Computing Group. Among his tools are automated defenses, penetration testing, and regular code audits.
As mentioned, the results are paying off -- Sony hasn't been hacked lately. And even when it has suffered the occasional intrusion, it's
locked it down
before much damage could be done.
Now Brett Wahlin has a new adversary --
[Image Source: Jason Mick/DailyTech]
Taking on the Russians with U.S. military, and
later the Chinese
(or "state-sponsored guys" as Mr. Wahlin ambiguously refers to them as in the piece) was hard enough, but taking on
is a brand new and potentially greater challenge. But while Mr. Wahlin may not be able to stop every single attack, he is the face of a new era for Sony, a company that went from having four security employees to having a solid security task force, manned by some of the world's best and brightest. As they say,
is the mother of invention.
Be sure to check out
's full interview for more commentary by Mr. Wahlin and his transition from
fighting Russian and Chinese spies
This article is over a month old, voting and posting comments is disabled
3/12/2012 3:37:14 PM
People only react once something bad happen, they rarely act before...
Am I of the only ones that prefer to prevent instead of repairing the broken jars?
RE: Human nature
3/12/2012 4:33:16 PM
People generally only know their weaknesses once someone exposes it. All depends on the skillset of the person attempting to gain access.
"I mean, if you wanna break down someone's door, why don't you start with AT&T, for God sakes? They make your amazing phone unusable as a phone!" -- Jon Stewart on Apple and the iPhone
China Continues to Gleefully Hack U.S. as Gov't Efforts Sunk by Partisanship
March 2, 2012, 1:47 PM
Sony Detects New Web Attack, 93,000 Accounts Are Locked Down
October 12, 2011, 10:33 AM
Sony and Apple Look for Fresh Blood Amid Security Woes
September 6, 2011, 11:51 AM
War 2.0: China Suspected in Massive Cyberattack on U.N., U.S. Gov't, and More
August 3, 2011, 3:50 PM
PSN is at Last Back From the Dead in Japan
July 4, 2011, 8:23 PM
FCC Orders Advertisers to Cut Out That Racket, Turn Down Commercials
August 29, 2014, 12:49 PM
Dropbox Bows to Competitive Pressure, Provides 1TB of Storage for $10/Month
August 27, 2014, 11:17 AM
Amazon Acquires Twitch for $970 Million
August 25, 2014, 4:37 PM
Facebook Adds Satire Tags to Its Auto-Generated "Related News" Posts
August 18, 2014, 10:43 AM
Comcast, TWC Pull Dinner Gift for FCC Commissioner... Sort Of
August 15, 2014, 1:10 PM
Comcast Accused of Wooing FCC Commissioner w/ $110K Dinner
August 13, 2014, 8:20 PM
Most Popular Articles
Numerous Leaks Detail 4.7" iPhone 6 Processor, RAM, Cellular and NFC Capabilities
August 29, 2014, 10:37 PM
Windows 9: "Upgrade Now" Button Coming for Enterprise Updates, ARM Preview in H1 2015
August 26, 2014, 8:00 PM
L.A. Unified School District’s Apple iPad Contract Canceled Following Heavy Criticism
August 26, 2014, 12:37 PM
Apple Builds Not-So-Secret Secret 3-Story Tower for iPhone 6/iWatch Unveil
August 28, 2014, 3:41 PM
Netflix Accuses Comcast of Ripping Off Customers, Files to Block Merger
August 26, 2014, 5:49 PM
Latest Blog Posts
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
Justice Leaks Details of Next HTC One Two Flagship Phone
Dec 5, 2013, 4:04 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information