One Article Review
| Source |  AlienVault Lab Blog |
|---|---|
| Identifiant | 8525884 |
| Date de publication | 2024-06-26 10:00:00 (vue: 2024-06-26 10:06:57) |
| Titre | Les tenants et aboutissants de l'évaluation de la posture de cybersécurité en 2024 The Ins and Outs of Cybersecurity Posture Assessment in 2024 |
| Texte | The content of this post is solely the responsibility of the author. LevelBlue does not adopt or endorse any of the views, positions, or information provided by the author in this article. Whether you\'re working with on-premises infrastructure, fully embracing the cloud, or running a hybrid solution, one thing is certain: a robust security posture is essential to safeguarding the environment. This article will explore today’s fundamentals of security posture assessment in both on-premises and cloud environments while briefly touching on the added complexities a hybrid setup will entail. What Is Security Posture Assessment? Before going any further, it is good to understand what security posture assessment really is and why knowing your security posture is essential to every organization. In short, a security posture assessment is a comprehensive evaluation of the currently utilized security measures safeguarding essential organizational data, processes to prevent breaches, and decisions to maintain business continuity. Any company should have a comprehensive assessment of its environment conducted at least annually. These assessments are used to identify vulnerabilities in processes and systems, point out areas for improvement, and comprehensively assess the overall resiliency of the organization’s entire IT ecosystem. The main goal is to fully understand the current security level and be able to take the necessary steps to remediate possible issues. Assessing On-Premises Security With on-premises system management, all the responsibility falls on the local IT team, so they need to have a comprehensive view of the currently deployed hardware and software to be able to successfully secure both. Let’s go over the components of such an exercise: ● Asset inventory: It is imperative to know the total scope of the organization\'s assets, including workstations, mobile devices, servers, network equipment, and all the software applications in use. This helps pinpoint outdated assets that either need to be removed from the environment or brought up-to-date with hardware or software upgrades. ● Patch management: New software vulnerabilities are being constantly unearthed, so prompt software updating and comprehensive patch management are instrumental in every environment. While it is a good idea to verify the stability of new updates first, automated patch management tools can help streamline this process. ● Network segmentation: Adversaries are always looking for opportunities for lateral movement in a network, so the isolation of systems and processes through network segmentation is an important step in limiting the potential damage a breach can cause. All in all, the evaluation of on-premises security requires an all-around review of the physical and digital protections within the organization’s data centers. This additionally includes vetting firewalls, intrusion detection systems, and access controls to thwart unauthorized access. Regular security audits and penetration tests are crucial to identify and address vulnerabilities before they can be weaponized. Assessing Cloud Security Working with cloud-based solutions keeps growing in popularity, since it effectively outsources the underlying hardware management to the cloud service provider, lessening the burden on the local IT team. This isn\'t to say that there is n |
| Notes | ★★★ |
| Envoyé | Oui |
| Condensat | 2021 2022 2024 2027 ability able above access according accounted across action added addition additional additionally address adds adopt adoption adversaries again align all also always annually any apis applications approach appropriate are areas around article assess assessing assessment assessments asset assets attack attacks audits author automate automated automation aware based baselines baselines: becomes before being benefits best better between billion both breach breaches bridging briefly brought burden business can case cases catalyst cause centered centers certain: challenges: changing checks clear clearly cloud common company complexities complexity: compliance compliant complicated components comprehensive comprehensively computer concerns conducted configuration connectivity connectors cons consistent constantly content continents continuity controls corporate crucial cspm current currently cybersecurity damage data databases date decisions defensive definitely demand deployed deployments detect detection devices different difficult difficulties digital diverse documented does done drift dss due easier easily easy ecosystem effectively efficiency either embracing employ encryption endnote endorse ensure entail enterprise enterprises entire environment environments equipment equipment; error essential evaluation even every excel exercise: explore falls feel finding firewalls first follow followed following footprint: forecast forgotten found frameworks frameworks: from full fully fundamentals further gap: gartner gdpr geographic get gives goal going good governance great growing grows growth half happen hardware has have help helps here hipaa hosted how human hybrid idea identify identity impact imperative importance important improvement incident includes including increase increasing industry information infrastructure ins instances instrumental integral integration integrity introduce intrusion inventory inventory: isn isolation issues its just keeps know knowing landscape large lateral lead least lessening let’s level levelblue leverage lifeblood like limiting local location looking lot lowdown machines main maintain maintaining make makes manage management management: managing many market may means measures mere middleware might misconfigurations mitigate mobile monitor monitoring more movement multi multiple must native nearly necessary need needs network new nontrivial not now offer offers once one operational operations opportunities opscompass opt organization organization’s organizational organizations other out outdated outs outsources over overall overlook part parts patch patching pci penetration physical pieces pillars pinpoint place plan platforms point popularity positions possible post posture potential practices premises prevent prioritizing procedures process processes prompt pros protections provided provider providers put quickly rapidly really reduced regardless regular regularly regulatory remediate remediation remember remembering removed repetitive requirements requires research reside resiliency response responsibility restrictions review reviewed robust running safeguarding salt same say scenario scope seamless secure security seek segmentation segmentation: sensitive servers service services set settings setup shielding short should similar since single software solely solution solutions some spans specific spread stability stack standards staying step steps streamline study successfully such sure system systems tackle take tandem tasks team teams technology tends tests thankfully them thereby these thing things those threat through thwart times today today’s tools total touching tracking trust two unauthorized underlying understand unearthed unified unless updated updates updating upgrades use used using utilized utilizing utmost vector verify very vetting view views virtual visibility vulnerabilities ways weaponized what where whether which whole why will within work working workstations worlds worst worth you your |
| Tags | Tool Vulnerability Threat Patching Mobile Cloud |
| Stories | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.