Bolstering Resilience In The Age Of Expanding Threats

Uploaded on 2024-02-09 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The recent implementation of the Securities and Exchange Commission’s (SEC’s) cybersecurity regulations has mandated public companies reveal any material cybersecurity incidents within a stringent four-business-day timeframe. This signifies that high-profile breaches, like the recent 23andMe breach, which compromised the data of approximately 7 million customers, will now carry significantly more severe ramifications.

The SEC's regulations represent a new wave of transformative alterations in regulatory compliance, hinting at a more profound shift in how companies approach and adhere to regulatory standards.

These regulations, just a fraction of the evolving landscape of compliance changes, signify a broader shift in accountability amid an increasingly broad attack surface and complex threat landscape. As the scope and complexity of potential threats continue to grow, navigating this complex environment emphasizes the critical need for comprehensive cyber exposure management.

Navigating The Expanding Attack Surface

The contemporary organizational attack surface is undergoing exponential expansion, propelled by the digital shift: migration to cloud infrastructure, widespread remote work setups, accelerated development timelines, insufficient validation processes, and heightened software complexity. Collectively, these factors present numerous openings for cyber attackers to exploit.

As hybrid networks expand in size and complexity, the attack surface expands, increasing the likelihood of experiencing a cyberattack. An organization requires comprehensive visibility into vulnerabilities across its environment and needs to achieve this efficiently. However, the production of reports is often a manual and time-consuming process. Additionally, determining whether the focus is on remediating the riskiest vulnerabilities with the greatest potential impact on the business can be challenging.

Organizations must find ways to manage their cyber exposure more effectively in a world of heightened risk. It is imperative for security teams to handle and mitigate their cyber exposure adeptly. The number of vulnerabilities listed in the National Vulnerability Database (NVD) nearly reached 200,000 at the beginning of 2023. The emergence of new vulnerabilities is escalating rapidly - NVD reported an addition of over 25,000 vulnerabilities in 2022, signifying a 25% surge compared to the preceding year. Vulnerabilities aren't just increasing; they're surging at an unprecedented pace.

Shifting From Conventional Responses

Amid the exponential rise in vulnerabilities, a stark reality emerges: the era of addressing every single vulnerability has become obsolete.

The sheer volume of vulnerabilities surpasses the capacity to fix them all, rendering the conventional response - often a mix of impromptu vulnerability scans, spreadsheet tracking, and periodic patching cycles - ineffective in meeting this formidable challenge.

This is why more and more organizations are looking for vulnerability management solutions to help them address this challenge. However, not all vulnerability management solutions are created equal.

The Five Stages of Comprehensive Vulnerability Management

A comprehensive vulnerability management program integrates technologies across five distinct stages:

1.    Assess:   This phase involves compiling an exhaustive inventory encompassing assets, endpoints, servers, network devices, cloud infrastructure, applications, and users essential for inclusion within the vulnerability management program.     

2.    Discover:   Here, aggregated security data from various sources, such as vulnerability scans and threat intelligence feeds, is overlaid to unveil comprehensive insights.

3.    Prioritize:   Quantifying cyber risks based on individual exposures takes precedence in this phase, allowing for the prioritization of resources to maximize effectiveness in addressing vulnerabilities.

4.    Remediate:   Choosing the most suitable remediation methods is pivotal in this stage. If a complete resolution isn't viable, selecting from an array of compensating controls becomes necessary.

5.    Report:   Effectiveness evaluations of remediation efforts and communication of risk levels to pertinent stakeholders form the core focus of this phase, ensuring transparent and informed decision-making.

Strategic Prioritization For Cyber Resilience

This strategic prioritization empowers efficient allocation of resources, ensuring that critical vulnerabilities receive immediate attention, reducing the likelihood and impact of potential cyber threats.

Organizations can use this comprehensive strategy to identify vulnerabilities more effectively and execute tailored remediation plans while providing clear and transparent reporting mechanisms. This approach ensures a systematic and efficient response to the evolving threat landscape, enhancing overall cyber resilience.

Howard Goodman is Technical Director at Skybox Security

Image: Shubham Dhage

You Might Also Read: 

Reducing The Risk Of Weak Links With Consolidation:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Neuralink Implant A Brain Chip In A Human
Chinese Hacking Campaign Targets US Critical Infrastructure »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

National Cyber Directorate Israel

National Cyber Directorate Israel

The Israeli National Cyber Directorate provides incident handling services for civilian entities and critical infrastructures and works to increase national resilience against cyber threats.

DQM GRC

DQM GRC

DQM GRC are one of the UK's leading providers of data governance, e-privacy and GDPR services, to commercial organisations across all industries in the UK.

C3.ai

C3.ai

The C3 AI Suite supports configurable, pre-built, high value AI applications for predictive maintenance, fraud detection, anti-money laundering, sensor network health and more.

UKAS

UKAS

UKAS is the national accreditation body for the UK. The directory of members provides details of organisations offering certification services for ISO 27001.

Alpine Security

Alpine Security

Alpine Security provides penetration testing, security assessments and cybersecurity training services.

GELLIFY

GELLIFY

GELLIFY is the first innovation platform dedicated to the high-tech B2B market, supporting start-ups and companies.

Cytenna

Cytenna

Cytenna Signal is a suite of SaaS (Software-as-a-Service) products that use AI and machine learning to automatically aggregate the latest information about software vulnerabilities.

Cyber Security Operations Consulting (CyberSecOp)

Cyber Security Operations Consulting (CyberSecOp)

CyberSecOp is an ISO 27001 Certified Organization which provides cyber security operations services and risk management consulting.

Secura B.V.

Secura B.V.

Secura is an independent specialized cybersecurity expert, providing insights to protect valuable assets and data.

Unlimited Technology

Unlimited Technology

Unlimited Technology offers a wide range of talent and experience, from assessing your requirements to implementing technologically advanced security solutions to best fit your needs.

ZARIOT

ZARIOT

ZARIOT's mission is to restore order to what is becoming connected chaos in IoT by bringing unrivalled security, control and quality of service.

RNTrust

RNTrust

RNTrust provide solutions to meet today’s digital challenges utilizing digital technologies and services to make you more secured in digitally connected environment.

Flexxon

Flexxon

Flexxon is the industry leader to develop NAND flash storage devices. Our key focus is to innovate memory devices ensuring data security and reliability.

GM Sectec

GM Sectec

GM Sectec is the world's largest independent Cyber Defense and Fraud Prevention firm laser focused on payment security.

Certera

Certera

Certera is a modern and affordable SSL Certificate, Code Signing Certificate, and Cyber Security Services provider.

VRS Technologies

VRS Technologies

VRS Technologies LLC offers expert IT solutions in Dubai, including AMC, cybersecurity, and tech rentals. Trusted by businesses for reliable, customized services.