RSA’s Amit Yoran Calls for Technologies that Enhance Analyst Hunting Capabilities

News Summary:

  • RSA President Amit Yoran reminds industry that the cybersecurity challenge is a human challenge as much as a technology one
  • Yoran calls organizations to adopt a proactive hunting approach to incident detection
  • Yoran highlights where government polices help and also hinder cybersecurity efforts
  • Download video of the keynote and a copy of Yoran’s remarks


Full Story:

Amit Yoran, president of RSA, The Security Division of EMC (NYSE:EMC), kicked off RSA Conference 2016 with an opening keynote to another record crowd of cybersecurity professionals. This year, Yoran urged the overflow crowd to step back and assess the industry’s challenge from a different perspective. Yoran called for organizations to focus technology investments on supplementing and enhancing their security teams’ native capabilities to make them smarter, more efficient, and more scalable.

“Allow, train and equip your people to track down and hunt your opponents. Let them evolve into the hunters you need,” Yoran said.

Highlighting the industry’s ongoing failure and some of the most painful security breaches of 2015, Yoran placed the blame on outdated approaches to security and a lack of alignment between technology solutions and the human problem they seek to address.

Acknowledging that organizations will never have as many cybersecurity professionals as are needed, Yoran detailed cybersecurity priorities for organizations and governments to better empower security teams to secure themselves against advanced threats.

Create a Culture of Hunters

Organizations need to create a culture that embraces the smart creative, the free thinker, and the curious.  If your security program is focused first and foremost on compliance, then you are doing it wrong.  Embrace the freedom to actively hunt for adversaries, you’ll attract the right team, and in doing so, create the right culture.

Better Align Technology Investments with the Problem at Hand

Yoran called for organizations to focus their technology investments on technologies that enhance rather than replace human creativity and problem solving. We need tools that give us comprehensive visibility and perspective.

Yoran also indicated that the international public sector has an important role to play in creating policies that help rather than hinder security efforts. He called for additional emphasis on talent development and greater alignment between the public and private sectors’ cybersecurity agenda in terms of leadership, transparency and policy development. Yoran was highly critical of any proposed weakening of encryption suggesting any policy that does is severely misguided.

Yoran concluded that the security industry needs to “wake up” and think as creatively as those who founded the industry. “Our industry was founded and built by mischievously creative, almost eccentric, pioneering ‘renegades.’ He challenged the audience with the final question “So what are you going to do differently this year?”



RSA provides more than 30,000 customers around the world with the essential security capabilities to protect their most valuable assets from cyber threats. With RSA’s award-winning products, organizations effectively detect, investigate, and respond to advanced attacks; confirm and manage identities; and ultimately, reduce IP theft, fraud, and cybercrime. For more information, go to

RSA and EMC are either registered trademarks or trademarks of EMC Corporation in the United States and/or other countries. All other company and product names may be trademarks of their respective owners.

This release contains “forward-looking statements” as defined under the Federal Securities Laws. Actual results could differ materially from those projected in the forward-looking statements as a result of certain risk factors, including but not limited to: (i) risks associated with the proposed acquisition of EMC by Denali Holdings, Inc., the parent company of Dell, Inc., including, among others, assumptions related to the ability to close the acquisition, the expected closing date and its anticipated costs and benefits; (ii) adverse changes in general economic or market conditions; (iii) delays or reductions in information technology spending; (iv) the relative and varying rates of product price and component cost declines and the volume and mixture of product and services revenues; (v) competitive factors, including but not limited to pricing pressures and new product introductions; (vi) component and product quality and availability; (vii) fluctuations in VMware, Inc.’s operating results and risks associated with trading of VMware stock; (viii) the transition to new products, the uncertainty of customer acceptance of new product offerings and rapid technological and market change; (ix) risks associated with managing the growth of our business, including risks associated with acquisitions and investments and the challenges and costs of integration, restructuring and achieving anticipated synergies; (x) the ability to attract and retain highly qualified employees; (xi) insufficient, excess or obsolete inventory; (xii) fluctuating currency exchange rates; (xiii) threats and other disruptions to our secure data centers or networks; (xiv) our ability to protect our proprietary technology; (xv) war or acts of terrorism; and (xvi) other one-time events and other important factors disclosed previously and from time to time in the filings of EMC, the parent company of RSA, with the U.S. Securities and Exchange Commission. EMC and RSA disclaim any obligation to update any such forward-looking statements after the date of this release.