Featuring: Tammy Hawkins
Vice President of Cybersecurity & Fraud, Intuit

Intuit’s Tammy Hawkins on Cloud Complexity, Blind Spots, and What Actually Works

Tammy Hawkins, VP of Cybersecurity and Fraud at Intuit, doesn’t sugarcoat it: “It’s not an if, it’s a when.” For large enterprises operating across multiple clouds and apps, complexity is a risk multiplier.

In this video, Tammy explains why prevention is no longer enough and how the right detection and response platform makes all the difference. From blind spots to dashboard fatigue, she describes the value her team gets from Mitiga’s unified signal intelligence, fast insights, and ability to take action when it matters most.

Tammy Hawkins:

There’s a lot of threats that we face in the cloud. When you run a large enterprise, you should assume your cloud will get breached at some point. It’s not an if, it’s a when. And you need to prepare accordingly.

Often, we don’t only use one cloud. Sometimes it’s two, three, four, depending on your infrastructure. The environments get very complex very quickly. And with that complexity comes risk.

Having something that can help you with all of the telemetry, all of the signals that you need to parse from the noise, is incredibly valuable in this space.

Brian:

So, welcome, Tammy. For those who don’t know you, could you tell us a little bit about who you are and what you do?

Tammy Hawkins:

Hi, Brian. My name is Tammy Hawkins. I am Vice President of Cybersecurity and Fraud at Intuit.

Brian:

So what threats do tech companies, and large enterprises, for that matter, face in the cloud?

Tammy Hawkins:

There’s a number of risks that we face in the cloud. You may have many clouds that are managed different ways. You may have different applications that are managed different ways within those clouds. And all of these have a different security posture and often have different systems that are monitoring things.

Brian:

So, how are you monitoring everything and really understanding all of the signals across all of those clouds as to what is happening in your company?

Tammy:

Prevention assumes you’re going to get it right and really prevent it all the time. Sorry to say, that’s a bad assumption.

Consider the fact that if you have a great system like Mitiga that not only helps you detect – assuming that, hey, prevention won’t always get it right – now you can detect, and they’ll help you respond. That’s a lot of value in a very short time, and a lot of risk and cost mitigation.

The types of blind spots that really give me pause for concern – and by the way, I find them often – are that we’re using many tools. Each of these tools have weaknesses, and it can be hard comparing across. If you’re using two, three, five, ten, however many tools, to monitor your multiple clouds and applications, are you really able to parse the signal from the noise? And are you able, because you can see the signal, to actually do something about it?

Mitiga answers this.

A second to a minute to hours can literally cost millions of dollars.

Brian:

So, why are individual SaaS security, identity security, cloud posture management solutions, all these preventative controls, insufficient for breach detection?

Tammy Hawkins:

Sure, there are great solutions out there for identity, for SaaS, for cloud posture. All these great tools are different. They’re separate. You have to look at different dashboards, different data, to even get close to breach detection.

I have too have many tools. Not one, not two, not three. Sometimes five, sometimes ten. All of these tools are creating different telemetry that we then have to feed into our SIEM. And then we have to extrapolate and understand the signals. That’s a lot of noise for technology that wasn’t necessarily designed for all that noise.

And you’re trying to parse through all of this data and determine the signal amongst the noise yourself.

Mitiga helps you do all of that. And not only do they help you do all of that, they give you insights on things that you may not be aware of and help you not only know where your blind spots are, but help you know what to do about it. And maybe even take action for you if it’s an active attack.

Mitiga just makes it easy. The UI: dead simple. You’re constantly making amazing improvements and delighting your customers.

The amazing talent that Mitiga has in its staff, the different dashboarding, the different data. You feel in really good hands.

Using Mitiga can help you reduce the other tools that you’re using to try to do what Mitiga does really well on its own.

Easier to use, less cost by reducing tools, more efficient by being able to parse signal from the noise, and to leverage insights that come from Mitiga.

Winning combination.