As a security practitioner, you have a lot on your plate, and the weight of the plate seems to grow by the day. Naturally, technology is available to help ease those burdens, but there’s a lot more to tapping into new security solutions than walking the expo floor at an upcoming infosec conference, asking a few questions, and ultimately pulling the trigger on a work order.

While some may take this approach, the chances of them throwing a considerable portion of their budget out of the window are high, and the probability of those same tools measurably reducing risk within the business is low.

In a day and age where there are more than 1,200 cybersecurity vendors on the market, it’s essential to be able to maneuver your way through the marketing buzzwords and sales jargon and get to the root of the matter, according to Vikram Phatak, CEO at NSS Labs.

“It’s important to separate fact from fiction,” Phatak told InfoSec Insider during a video interview shot at the recent Black Hat Conference in Las Vegas. “There are a lot of grandiose claims out there. Understanding what the use case is, what you need, and falling for the hype is the main thing because you’re going to get bombarded.”

Once you get that title shift within your organization, your email will get flooded with vendors that think they can help you, he adds, so you and your team need to be prepared.

In the full video interview below, Phatak offers up tips to up-and-coming security professionals on how to make smart and effective cybersecurity solution purchasing decisions. From blocking out buzzwords and marketing jargon to building a great team, here’s what you need to know.

Interesting in learning about the latest cybersecurity solutions that could benefit your organization? MISTI's InfoSec World Conference & Expo is the perfect opportunity.

Alvaro Reyes