Industry is moving from a focus on prevention to rapid detection, where companies can quickly identify and mitigate threats that are within the perimeter already. This new approach is centered on the idea that its impossible to keep every attacker out indefinitely. While this doesnt mean abandoning prevention efforts altogether, it suggests organizations devote more resources to identification and remediation. The following nine tips provided by Alvaro Hoyos, Chief Information Security Officer at OneLogin, are focused on detection controls rather than prevention.”]
Source: https://www.csoonline.com/article/3094337/how-to-become-an-offensive-minded-company.html