AV and NGAV have built upon the idea of stopping known problems (or at least known unknowns). With a foundation of signatures and a light framework of behaviors of observed attacks, they tout a way to stop attacks. However, a simple glance at the news shows these tools are not successful. Businesses need more to solve for the constant growing cyber security risk.
AV and NGAV alone isn’t going to protect an organization.
Nation-state adversaries are not the problem, their techniques and tools are. The typical organization does not need to worry about nation-state adversaries targeting their company, however we have seen the cyber criminal world learn to adopt and implement these adversary tools instantly upon disclosure. For example, after the Vault 7 leak, ransomware flooded the market utilizing nation-state developed exploitation, How does a CISO stop nation-state techniques daily? Remember, the defender needs to be right 100 percent of the time.