{"id":1578,"date":"2023-08-11T04:59:11","date_gmt":"2023-08-11T01:59:11","guid":{"rendered":"https:\/\/egemhabertv.com\/?p=1578"},"modified":"2023-08-11T04:59:11","modified_gmt":"2023-08-11T01:59:11","slug":"siberguvenlik-ulusal-guvenlik-meselesi-nasil-bir-ekonomi","status":"publish","type":"post","link":"https:\/\/egemhabertv.com\/?p=1578","title":{"rendered":"Siberg\u00fcvenlik ulusal g\u00fcvenlik meselesi – Nas\u0131l Bir Ekonomi"},"content":{"rendered":"

[ad_1]
\n<\/p>\n

\n

Vedat T\u00fcfek\u00e7i – Palo Alto Networks T\u00fcrkiye, Rusya CIS Direkt\u00f6r\u00fc<\/strong><\/p>\n

Bulut ekonomisinin s\u00fcrekli geni\u015fledi\u011fi ve yeni nesil teknolojik ara\u00e7lar\u0131n h\u0131zla yayg\u0131nla\u015ft\u0131\u011f\u0131 g\u00fcn\u00fcm\u00fczde, siberg\u00fcvenlik riskleri toplumun g\u00fcndelik ya\u015fam\u0131n\u0131 sarsabilecek d\u00fczeyde bir etkiye sahip. Ya\u015fam ve \u00e7al\u0131\u015fma alanlar\u0131m\u0131zdaki onlarca cihaz\u0131n g\u00fcvenli\u011fi bir yana elektrik, su, do\u011fal gaz gibi kaynaklar\u0131 halka ula\u015ft\u0131ran \u015febekelerden, ula\u015f\u0131m ve ileti\u015fime, finanstan \u00fcretim tesislerine kadar dijital altyap\u0131lar\u0131n bulundu\u011fu her ortam bug\u00fcn siber ataklar\u0131n ba\u015fl\u0131ca hedefini olu\u015fturuyor. Dolay\u0131s\u0131yla siberg\u00fcvenlik en geni\u015f anlam\u0131yla bir ulusal g\u00fcvenlik meselesi olarak yerini sa\u011flamla\u015ft\u0131r\u0131yor.
Siberg\u00fcvenlik, dijital olarak d\u00f6n\u00fc\u015fen bir d\u00fcnyada verilerini, \u00e7al\u0131\u015fanlar\u0131n\u0131 ve m\u00fc\u015fterilerini koruyan her i\u015fletme i\u00e7in \u00e7ok \u00f6nemli. IBM\u2019in 3 bin 600 g\u00f6r\u00fc\u015fmeyle haz\u0131rlad\u0131\u011f\u0131 2022 Veri \u0130hlalinin Maliyeti raporuna g\u00f6re kurumlar\u0131n y\u00fczde 83\u2019\u00fcn\u00fcn birden fazla sald\u0131r\u0131ya maruz kald\u0131\u011f\u0131 ve kritik altyap\u0131lar\u0131n y\u00fczde 79\u2019unda S\u0131f\u0131r G\u00fcven Temelli Mimari\u2019ye (Zero Trust Architecture) halen ge\u00e7ilmedi\u011fi belirtiliyor. \u00dclkemizden \u00f6rnek vermemiz gerekirse T\u00fcrkiye siber sald\u0131r\u0131lar\u0131n yo\u011funlu\u011fu a\u00e7\u0131s\u0131ndan d\u00fcnyan\u0131n ilk 10 \u00fclkesi aras\u0131nda yer al\u0131yor. \u00d6rne\u011fin sistemlerin \u00e7al\u0131\u015fmas\u0131n\u0131 engelleyen DDoS sald\u0131r\u0131lar\u0131nda \u00fclkemiz, 2018 y\u0131l\u0131nda y\u00fczde 5,84\u2019l\u00fck oran\u0131 ile d\u00fcnya 7\u2019ncisi oldu.<\/p>\n

Siberg\u00fcvenlik harcamalar\u0131n\u0131n 2022y\u0131l\u0131nda 133,7 milyar dolara ula\u015ft\u0131<\/strong><\/p>\n

Yine bas\u0131na yans\u0131yan uzman g\u00f6r\u00fc\u015flerine g\u00f6re 2023 y\u0131l\u0131nda siber su\u00e7lar\u0131n \u00fclkemize 8 ile 28 milyar dolar<\/a> aras\u0131nda ek maliyet yaratmas\u0131 bekleniyor. \u0130\u015fler bu kadar ciddiyken T\u00fcrkiye\u2019de bu alanda insan kayna\u011f\u0131 a\u00e7\u0131\u011f\u0131n\u0131n yakla\u015f\u0131k 50 bin dolay\u0131nda olmas\u0131 bir di\u011fer dikkate al\u0131nmas\u0131 gereken bir konu. Siber sald\u0131rganlar\u0131n yeni ara\u00e7lar\u0131 ve interneti daha organize kullanmas\u0131 bu alanda nitelikli insan yeti\u015ftirmenin ve do\u011fru ara\u00e7lar\u0131 kullanman\u0131n \u00f6nemini giderek art\u0131r\u0131yor. Cybersecurity Ventures’a g\u00f6re, d\u00fcnya \u00e7ap\u0131nda doldurulmam\u0131\u015f siberg\u00fcvenlik pozisyonlar\u0131n\u0131n say\u0131s\u0131 2013 ile 2021 aras\u0131nda y\u00fczde 350 artarken uzman a\u00e7\u0131\u011f\u0131 da 1 milyondan 3,5 milyona y\u00fckseldi. Oysa Gartner’\u0131n ara\u015ft\u0131rmas\u0131na g\u00f6re d\u00fcnya genelinde siberg\u00fcvenlik harcamalar\u0131n\u0131n 2022’de 133,7 milyar dolara ula\u015ft\u0131\u011f\u0131 tahmin ediliyor. ChatGPT ile pop\u00fclerle\u015fen ak\u0131ll\u0131 robotlar\u0131n yayg\u0131nla\u015fmas\u0131, i\u015f uygulamalar\u0131ndaki yanl\u0131\u015f yap\u0131land\u0131rmalar, kod zay\u0131fl\u0131klar\u0131, kullan\u0131c\u0131 ihmalleri siber sald\u0131rganlar\u0131 daha organize olmaya y\u00f6nlendirirken fidye ama\u00e7l\u0131 yaz\u0131l\u0131mlarda da ciddi bir art\u0131\u015f g\u00f6r\u00fcl\u00fcyor.
D\u00fcnya Ekonomik Forumu\u2019nun K\u00fcresel Riskler Raporu, son 17 y\u0131ld\u0131r birbiriyle derinden ba\u011flant\u0131l\u0131 k\u00fcresel riskler konusunda uyar\u0131larda bulunuyor. Bu y\u0131l yay\u0131nlanan raporda \u00f6zellikle siber g\u00fcvenlik vurgusu yap\u0131ld\u0131 ve siberg\u00fcvenli\u011fin gelece\u011fin endi\u015fe verici riskleri aras\u0131na ta\u015f\u0131nd\u0131\u011f\u0131 a\u00e7\u0131kland\u0131. WEF\u2019in k\u0131sa ve uzun vadede d\u00fcnyay\u0131 tehdit eden risklere ili\u015fkin i\u00e7g\u00f6r\u00fcler payla\u015ft\u0131\u011f\u0131 raporun Ocak 2023\u2019te yay\u0131mlanan 18. edisyonunda \u201cyayg\u0131n siber su\u00e7 ve siberg\u00fcvensizlik\u201d ba\u015fl\u0131\u011f\u0131, ilk 10 risk aras\u0131nda yer ald\u0131. Palo Alto Networks\u2019\u00fcn se\u00e7kin g\u00fcvenlik uzmanlar\u0131ndan olu\u015fan ve k\u00fcresel d\u00fczeydeki siberg\u00fcvenlik ihlallerini izleyen Unit 42 tak\u0131m\u0131n\u0131n haz\u0131rlam\u0131\u015f oldu\u011fu 2022 Fidye Yaz\u0131l\u0131m Tehdit Raporu\u2019na g\u00f6re ise 2021 y\u0131l\u0131nda olay baz\u0131nda sald\u0131rganlar\u0131n talep etti\u011fi fidye miktar\u0131 ortalama y\u00fczde 144 art\u0131\u015fla 2,2 milyon dolara \u00e7\u0131karken, \u00f6denen miktarlar da y\u00fczde 78 art\u0131\u015fla 541 bin dolar\u0131 a\u015ft\u0131. Fidye yaz\u0131l\u0131mlar, siber sald\u0131rganlar\u0131n s\u0131k kulland\u0131\u011f\u0131 bir y\u00f6ntem olarak 2020\u2019den bu yana ortaya \u00e7\u0131kan 130\u2019dan fazla t\u00fcrevi ile kurumlar\u0131n bilgi g\u00fcvenli\u011fini tehdit ediyor. Siberg\u00fcvenlik giderek d\u00fcnyan\u0131n g\u00fcndemini daha fazla me\u015fgul ederken kurumlar da dijital d\u00f6n\u00fc\u015f\u00fcm\u00fcn sadece bir tercih de\u011fil kurumsal anlamda bir k\u00fclt\u00fcrel d\u00f6n\u00fc\u015f\u00fcm gerektirdi\u011fini g\u00f6r\u00fcyorlar. Gartner’\u0131n 81 \u00fclkede faaliyet g\u00f6steren \u015firketlerden 2 bin 200’\u00fc a\u015fk\u0131n CIO ile y\u00fcr\u00fctt\u00fc\u011f\u00fc bir ara\u015ft\u0131rma da 2023’te her 3 CIO\u2019dan ikisinin siberg\u00fcvenlik yat\u0131r\u0131mlar\u0131n\u0131 \u00f6nceliklendirece\u011fini s\u00f6yleyerek bu sav\u0131 destekliyor.<\/p>\n

Sadece IT\u2019yi de\u011fil OT\u2019yi de ilgilendiriyor<\/strong><\/p>\n

Bu noktada sorunun yaln\u0131zca kurumlar\u0131n bili\u015fim sistemlerinin (IT-Information Technologies) g\u00fcvenli\u011finden ibaret olmad\u0131\u011f\u0131n\u0131 da not etmemizde fayda var. Bug\u00fcn operasyonel teknolojiler (OT) olarak adland\u0131rd\u0131\u011f\u0131m\u0131z yap\u0131lar, bili\u015fim sistemleriyle ba\u011flant\u0131l\u0131 su, elektrik \u015febekesi, \u00fcretim band\u0131 gibi yerlerde kullan\u0131lan sens\u00f6rler gibi \u00e7e\u015fitli dijital cihazlar \u00fczerinden \u00f6l\u00e7\u00fcmleme, izleme ve genel sistem sa\u011fl\u0131\u011f\u0131n\u0131 denetleme i\u015flevi g\u00f6r\u00fcyor. Nesnelerin \u0130nterneti (IoT) s\u0131n\u0131f\u0131na sokabilece\u011fimiz bu cihazlar (telemetri cihazlar\u0131, sens\u00f6rler, CCTV kameralar, kartl\u0131 ge\u00e7i\u015f sistemleri, ofislerdeki Projeksiyon, televizyon, Ip telefonlar, yaz\u0131c\u0131lar) bug\u00fcn fabrikalardaki \u00fcretim bantlar\u0131ndan, kent trafi\u011fine, su \u015febekelerinden, deprem izlemeye kadar bir\u00e7ok yerde kullan\u0131l\u0131yor. Dolay\u0131s\u0131yla siberg\u00fcvenlik sadece IT\u2019yi de\u011fil OT\u2019yi de ilgilendiren bir konu olarak g\u00fcndemin s\u0131cak maddesini olu\u015fturuyor.<\/p>\n

T\u00fcm sekt\u00f6rlerde d\u00fcnya \u00e7ap\u0131nda binlerce m\u00fc\u015fteriye yeni nesil siberg\u00fcvenlik \u00e7\u00f6z\u00fcmleri sa\u011flayan Palo Alto Networks, siberg\u00fcvenli\u011fi yaz\u0131l\u0131m kodu seviyesinden \u00e7oklu bulut ortamlar\u0131nda risklerin \u00f6nlenmesine kadar geni\u015f bir yelpazede ele al\u0131yor; \u00fcretken yapay zek\u00e2 ba\u011flant\u0131lar\u0131nda \u015firketlere arad\u0131klar\u0131 g\u00fcvenli ortam\u0131 sa\u011flayan yenilik\u00e7i \u00e7\u00f6z\u00fcmler sunuyor. Siberg\u00fcvenli\u011fin gelece\u011finin yapay zek\u00e2 ve tam otomasyonda oldu\u011funu g\u00f6rebiliyoruz. Bu teknolojiler, bize m\u00fc\u015fterilerimizin ortamlar\u0131ndan ger\u00e7ek zamanl\u0131 veri toplay\u0131p analiz etmemizi ve siber tehditlere kar\u015f\u0131 neredeyse ger\u00e7ek zamanl\u0131 olarak yan\u0131t verebilmemizi sa\u011fl\u0131yor. End\u00fcstriye y\u00f6nelik raporlar\u0131yla \u00fcnl\u00fc Gartner\u2019\u0131n Leader in the 2022 Gartner\u00ae Magic Quadrant for Network Firewalls ara\u015ft\u0131rmas\u0131nda \u00fcst \u00fcste 11. kez lider se\u00e7ildi\u011fimizin alt\u0131n\u0131z \u00e7izmek isteriz. Yeni nesil g\u00fcvenlik duvarlar\u0131m\u0131z, geleneksel makine \u00f6\u011freniminin bir alt k\u00fcmesi olan derin \u00f6\u011frenme teknolojisine sahip. Ayr\u0131ca gecikmesiz olarak kaydedilen (zero delay signatures) t\u00fcm atak tehditleri a\u011fa ba\u011fl\u0131 her yeni nesil g\u00fcvenlik duvar\u0131 \u00fczerinde saniyeler i\u00e7inde g\u00fcncellenebiliyor. B\u00f6ylece k\u00f6t\u00fc ama\u00e7l\u0131 s\u0131zd\u0131r\u0131lan yaz\u0131l\u0131m kodlar\u0131n\u0131n kullan\u0131c\u0131ya eri\u015fmeden bertaraf edilmesi m\u00fcmk\u00fcn olabiliyor. Yapay zeka destekli g\u00fcvenlik operasyonlar\u0131m\u0131z (AIOps) ile m\u00fc\u015fterilerimiz, i\u015f g\u00fcc\u00fcnden tasarruf edebiliyor ve donan\u0131m yat\u0131r\u0131m\u0131 yapmalar\u0131na gerek kalmadan g\u00fcvenlik g\u00f6r\u00fcn\u00fcmlerini iyile\u015ftirebiliyorlar.
Palo Alto Networks olarak kurulu\u015flar\u0131n teknolojiyi g\u00fcvenle kullanabilmeleri i\u00e7in ara\u015ft\u0131rma ve geli\u015ftirmeye yo\u011fun kaynak ay\u0131r\u0131yoruz. S\u0131f\u0131r G\u00fcven Temelli siberg\u00fcvenlik yakla\u015f\u0131m\u0131na b\u00fcy\u00fck \u00f6nem veriyor; bu yakla\u015f\u0131m\u0131n, kurumlar\u0131n dijital ya\u015fam tarz\u0131 ve veri g\u00fcvenli\u011fine tehdit olu\u015fturan siberg\u00fcvenlik risklerine kar\u015f\u0131 s\u0131f\u0131r tolerans g\u00f6stermek anlam\u0131na geldi\u011fini \u0131srarla vurguluyoruz. S\u0131f\u0131r G\u00fcven Temelli \u0130\u015fletme (Zero Trust Entreprise) kurumlar i\u00e7in siberg\u00fcvenlik alan\u0131nda risk y\u00f6netimini tek bir ama\u00e7 alt\u0131nda basitle\u015ftiren ve birle\u015ftiren stratejik bir yakla\u015f\u0131m. Bu yakla\u015f\u0131m\u0131n yal\u0131n hedefi kurum \u00f6l\u00e7e\u011finde ger\u00e7ekle\u015fen dijital t\u00fcm i\u015flemlerin genelde bir \u00f6n kabul olarak g\u00fcvenli bir ortamda yap\u0131ld\u0131\u011f\u0131 yan\u0131lsamas\u0131n\u0131 ortadan kald\u0131rmakt\u0131r. T\u00fcrkiye\u2019de bir\u00e7ok kurumda bu S\u0131f\u0131r G\u00fcven Temelli Siberg\u00fcvenlik entegrasyonunu ba\u015far\u0131 ile ger\u00e7ekle\u015ftirdik. Palo Alto Networks\u2019\u00fcn S\u0131f\u0131r G\u00fcven Temelli (Zero Trust) yakla\u015f\u0131m\u0131, kod seviyesinden cihazlara, bilgisayar a\u011flar\u0131ndan, OT operasyonlar\u0131nda kullan\u0131lan Nesnelerin \u0130nterneti\u2019ne kadar \u015firketlerin t\u00fcm dijital varl\u0131klar\u0131n\u0131 siber ataklara kar\u015f\u0131 korumay\u0131 hedefliyor.
Siberg\u00fcvenlik teknoloji alan\u0131nda profesyonellere \u00f6nerilerimiz a\u011f trafi\u011finin y\u00fczde 100 g\u00f6r\u00fcn\u00fcrl\u00fc\u011f\u00fcn\u00fc sa\u011flamalar\u0131d\u0131r. Bunu da ancak a\u011fdaki t\u00fcm trafi\u011fi tan\u0131mlay\u0131p, bilinmeyen ve potansiyel olarak y\u00fcksek riskli trafi\u011fi engelleyerek yapabilirsiniz. Ayr\u0131ca uygulama bazl\u0131 ve kullan\u0131c\u0131 tabanl\u0131 denetimleri zorunlu hale getirmek ve otomatikle\u015ftirmek ekstra bir g\u00fcvenlik katman\u0131 sunar. Bug\u00fcn siber sald\u0131rganlar\u0131n Dark Web\u2019de organize ve geli\u015fmi\u015f teknolojileri devreye sokarak atak planlar\u0131 yapt\u0131klar\u0131n\u0131 ve uygulad\u0131klar\u0131n\u0131 d\u00fc\u015f\u00fcn\u00fcrsek, onlardan bir ad\u0131m \u00f6nde olacak yenilik\u00e7i teknolojileri kullanmak birincil \u00e7\u00f6z\u00fcm yolu gibi g\u00f6z\u00fck\u00fcyor.<\/p>\n

\u0130nsan kayna\u011f\u0131na yat\u0131r\u0131m \u00f6nemli<\/strong><\/p>\n

Teknolojik \u00f6nlemler bu i\u015fin olmazsa olmaz\u0131 ama kurum i\u00e7i siberg\u00fcvenlik e\u011fitimleri ve insan kayna\u011f\u0131na yat\u0131r\u0131m da di\u011fer \u00f6nemli ba\u015fl\u0131klar. Siberg\u00fcvenlikte otomasyon ve entegrasyon hem karma\u015f\u0131kl\u0131\u011f\u0131 azalt\u0131p, siber dayan\u0131kl\u0131l\u0131\u011f\u0131 art\u0131racak ve daha az insana ba\u011fl\u0131 bir yap\u0131 olacak hem de daha d\u00fc\u015f\u00fck toplam sahip olma maliyeti avantaj\u0131 getirecektir. Siberg\u00fcvenlik risk y\u00f6netimi y\u00f6netim kurullar\u0131 seviyesinde ele al\u0131nmal\u0131, her \u015firketin siber eylem plan\u0131 ve y\u00f6neti\u015fim yap\u0131s\u0131 olu\u015fturulmal\u0131d\u0131r. H\u0131zla dijitalle\u015fen i\u015f s\u00fcre\u00e7lerimizin kesintiye u\u011fray\u0131p maddi kay\u0131plar\u0131n olmamas\u0131; di\u011fer taraftan itibar ve m\u00fc\u015fteri kayb\u0131 riski, yasal yapt\u0131r\u0131mlar ve zorunluluklar a\u00e7\u0131s\u0131ndan risk y\u00f6netim plan\u0131n\u0131n i\u00e7inde ele al\u0131nmal\u0131d\u0131r. \u0130\u015f birimleri, yeni bir \u00fcr\u00fcn veya servis geli\u015ftirme a\u015famas\u0131nda daha siberg\u00fcvenlik ekipleriyle yak\u0131n \u00e7al\u0131\u015fmal\u0131 ve riskler daha geli\u015ftirme a\u015famas\u0131nda minimize edilebilmelidir. Konunun daha da ciddiye al\u0131nmas\u0131 i\u00e7in, T\u00fcrkiye\u2019de de Avrupa ve Amerika\u2019daki gibi siber sald\u0131r\u0131ya u\u011frayan kurumun belli bir s\u00fcre i\u00e7inde bunu a\u00e7\u0131klama zorunlulu\u011fu getirilmelidir.<\/p>\n

\u00a0<\/p>\n

\u00a0<\/p>\n<\/p><\/div>\n

[ad_2]
\n
Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

[ad_1] Vedat T\u00fcfek\u00e7i – Palo Alto Networks T\u00fcrkiye, Rusya CIS Direkt\u00f6r\u00fc Bulut ekonomisinin s\u00fcrekli geni\u015fledi\u011fi<\/p>\n","protected":false},"author":1,"featured_media":1319,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-1578","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-ekonomi"],"_links":{"self":[{"href":"https:\/\/egemhabertv.com\/index.php?rest_route=\/wp\/v2\/posts\/1578","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/egemhabertv.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/egemhabertv.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/egemhabertv.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/egemhabertv.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1578"}],"version-history":[{"count":0,"href":"https:\/\/egemhabertv.com\/index.php?rest_route=\/wp\/v2\/posts\/1578\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/egemhabertv.com\/index.php?rest_route=\/wp\/v2\/media\/1319"}],"wp:attachment":[{"href":"https:\/\/egemhabertv.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1578"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/egemhabertv.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1578"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/egemhabertv.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1578"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}