One Article Review
| Source |  AlienVault Lab Blog |
|---|---|
| Identifiant | 8470766 |
| Date de publication | 2024-03-26 10:00:00 (vue: 2024-03-26 14:07:42) |
| Titre | L'importance croissante du CAASM dans la stratégie de cybersécurité de l'entreprise The Growing Importance of CAASM in Company Cybersecurity Strategy |
| Texte | The content of this post is solely the responsibility of the author. AT&T does not adopt or endorse any of the views, positions, or information provided by the author in this article. The recent years\' events, including the proliferation of ransomware, the pandemic, and political tensions, have fast-tracked the development of both offensive and defensive tools in the cyber domain. Cybersecurity concepts that were nascent a few years ago are now being refined, demonstrating the practical benefits of modern digital risk management strategies. Gartner analysts have highlighted the expansion of the attack surface as a significant risk for corporate cyber environments in the upcoming years. The most vulnerable entities include IoT devices, cloud apps, open-source systems, and complex software supply chains. There is an increasing demand for concepts like Cyber Asset Attack Surface Management (CAASM), External Attack Surface Management (EASM), and Cloud Security Posture Management (CSPM) in corporate security frameworks. This trend is also documented in Gartner\'s "hype" chart. Let\'s discuss the concept of CAASM, which is centered on identifying and managing all digital assets within an organization, whether they are internal or external. This approach aims to provide a comprehensive view and control over the organization\'s cyber environment, enhancing security measures and management practices. What Is CAASM CAASM assists IT departments in achieving end-to-end visibility of a company\'s cyber assets. This strategy creates a fuller understanding of the actual state of the infrastructure, enabling the security team to respond promptly to existing threats and potential future ones. CAASM-based products and solutions integrate with a broad array of data sources and security tools. CAASM gathers and aggregates data and analyzes perimeter traffic, providing a continuous, multi-dimensional view of the entire attack surface. Having access to current asset data enables information security officers to visualize the infrastructure and address security gaps promptly. They can prioritize the protection of assets and develop a unified perspective on the organization\'s actual security posture. This sets the stage for proactive risk management strategies. Exploring CAASM\'s Core Functions The CAASM approach equips security professionals with a variety of tools necessary for effectively managing an organization\'s attack surface and addressing risks. Asset Discovery A lack of visibility into all of an organization\'s assets heightens the risk of cyberattacks. Cyber Asset Attack Surface Management products automatically detect and catalog every component of a company\'s digital infrastructure, encompassing local, cloud, and various remote systems, including shadow IT. A company employing CAASM gains a clear overview of all its deployed web applications, servers, network devices, and cloud services. CAASM facilitates a comprehensive inventory of the devices, applications, networks, and users constituting the company\'s attack surface. Vulnerability Detection It is important to understand the risks each asset poses, such as missing the latest security updates or opportunities to access sensitive data. CAASM systems integrate asset data, helping security teams identify misconfigurations, vulnerabilities, and oth |
| Envoyé | Oui |
| Condensat | access according accurately achieving across actions active actual adaptation added address addresses addressing adequate adhering adopt adoption advanced after against aggregates ago aimed aims alert all also among analysis analysts analytics analyzes any apis applications approach apps are array article assess assessment asset assets assist assists at&t attack attacker attackers attacks author automated virtual automatically avoiding based being beneficial benefits best between bill both breaches broad broader business caasm can catalog centered chains chance changes chart clear cloud communicate company compare complementing complex compliance component components comprehensive comprehensively concept concepts conclusion configuration configurations considers constituting content continuous continuously contribute control controls core corporate cost could coverage covering covers creates critical cspm current cutting cyber cyberattacks cybersecurity data databases decreased defense defensive demand demonstrate demonstrating department departments deployed deployment designed detect detected detection develop developers development devices differences digital dimensional directory discovery discuss diverse documented does domain downtime dynamic each easm effective effectively effectiveness efficient efficiently elements emerging employing enable enables enabling encompasses encompassing end endorse endpoint enhances enhancing entire entities environment environments equips erp evaluate evaluation events every example existing expansion expenses exploit exploitable explore exploring external facilitates factors fast features fixes focus focuses focusing frameworks from fuller functions future gains gaps gartner gathers greater growing hackers handling hardware has have having heightens help helping highlighted the how hype identification identified identify identifying impacted implementation importance important improve improves incident incidents include includes including including shadow including: increasing indicate indicators industry information infrastructure infrastructures initiatives insecure insights integrate integrates integrating integration internal inventory inventory involve iot issue issues its known log4shell lack latest launch leading let library lies like local long lower main make making managed management manages managing map material mature mean measure measures measuring metric minimizing misconfigurations missing mitigation modern monitor monitoring more most mttd mtti mttr multi narrows nascent necessary network networks new not noticed now objectives offensive offer officers ones open opportunities opportunity organization organizations other over overall overseeing overview pandemic party patch patches penalties percentage performing perimeter perspective platforms points policy political poses positions post posture potential practical practices prem premises primary prioritization prioritize proactive process product products professionals proliferation promptly protection protects provide provided providing public quicker quickly range ransomware rates real realized recent recommendations reconnaissance recover reduce reduces reducing refined reflect reflects regulatory relevant remediation remedy remote reporting requirements resolution resolved resources respond response responsibility risk risks roi run savings sbom scanners scanning scenario security see seeks sensitive servers service services sets settings shadow share sharing should shows side significant significantly signifies similar software solely solutions source sources specialists specific speed spot spotting stage standards state status storage strategies strategy substantial success such suggests supply suppose surface surface as swiftly system systems table taken targets team teams tensions the mean them these third threat threats through time timeframe timely tools track tracked tracks traffic trend tweaks understand understanding unified universal upcoming updates users uses |
| Tags | Ransomware Tool Vulnerability Threat Prediction Cloud |
| Stories | |
| Notes | ★★★ |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.