Bolstering Resilience In The Age Of Expanding Threats

Uploaded on 2024-02-09 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The recent implementation of the Securities and Exchange Commission’s (SEC’s) cybersecurity regulations has mandated public companies reveal any material cybersecurity incidents within a stringent four-business-day timeframe. This signifies that high-profile breaches, like the recent 23andMe breach, which compromised the data of approximately 7 million customers, will now carry significantly more severe ramifications.

The SEC's regulations represent a new wave of transformative alterations in regulatory compliance, hinting at a more profound shift in how companies approach and adhere to regulatory standards.

These regulations, just a fraction of the evolving landscape of compliance changes, signify a broader shift in accountability amid an increasingly broad attack surface and complex threat landscape. As the scope and complexity of potential threats continue to grow, navigating this complex environment emphasizes the critical need for comprehensive cyber exposure management.

Navigating The Expanding Attack Surface

The contemporary organizational attack surface is undergoing exponential expansion, propelled by the digital shift: migration to cloud infrastructure, widespread remote work setups, accelerated development timelines, insufficient validation processes, and heightened software complexity. Collectively, these factors present numerous openings for cyber attackers to exploit.

As hybrid networks expand in size and complexity, the attack surface expands, increasing the likelihood of experiencing a cyberattack. An organization requires comprehensive visibility into vulnerabilities across its environment and needs to achieve this efficiently. However, the production of reports is often a manual and time-consuming process. Additionally, determining whether the focus is on remediating the riskiest vulnerabilities with the greatest potential impact on the business can be challenging.

Organizations must find ways to manage their cyber exposure more effectively in a world of heightened risk. It is imperative for security teams to handle and mitigate their cyber exposure adeptly. The number of vulnerabilities listed in the National Vulnerability Database (NVD) nearly reached 200,000 at the beginning of 2023. The emergence of new vulnerabilities is escalating rapidly - NVD reported an addition of over 25,000 vulnerabilities in 2022, signifying a 25% surge compared to the preceding year. Vulnerabilities aren't just increasing; they're surging at an unprecedented pace.

Shifting From Conventional Responses

Amid the exponential rise in vulnerabilities, a stark reality emerges: the era of addressing every single vulnerability has become obsolete.

The sheer volume of vulnerabilities surpasses the capacity to fix them all, rendering the conventional response - often a mix of impromptu vulnerability scans, spreadsheet tracking, and periodic patching cycles - ineffective in meeting this formidable challenge.

This is why more and more organizations are looking for vulnerability management solutions to help them address this challenge. However, not all vulnerability management solutions are created equal.

The Five Stages of Comprehensive Vulnerability Management

A comprehensive vulnerability management program integrates technologies across five distinct stages:

1.    Assess:   This phase involves compiling an exhaustive inventory encompassing assets, endpoints, servers, network devices, cloud infrastructure, applications, and users essential for inclusion within the vulnerability management program.     

2.    Discover:   Here, aggregated security data from various sources, such as vulnerability scans and threat intelligence feeds, is overlaid to unveil comprehensive insights.

3.    Prioritize:   Quantifying cyber risks based on individual exposures takes precedence in this phase, allowing for the prioritization of resources to maximize effectiveness in addressing vulnerabilities.

4.    Remediate:   Choosing the most suitable remediation methods is pivotal in this stage. If a complete resolution isn't viable, selecting from an array of compensating controls becomes necessary.

5.    Report:   Effectiveness evaluations of remediation efforts and communication of risk levels to pertinent stakeholders form the core focus of this phase, ensuring transparent and informed decision-making.

Strategic Prioritization For Cyber Resilience

This strategic prioritization empowers efficient allocation of resources, ensuring that critical vulnerabilities receive immediate attention, reducing the likelihood and impact of potential cyber threats.

Organizations can use this comprehensive strategy to identify vulnerabilities more effectively and execute tailored remediation plans while providing clear and transparent reporting mechanisms. This approach ensures a systematic and efficient response to the evolving threat landscape, enhancing overall cyber resilience.

Howard Goodman is Technical Director at Skybox Security

Image: Shubham Dhage

You Might Also Read: 

Reducing The Risk Of Weak Links With Consolidation:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Neuralink Implant A Brain Chip In A Human
Chinese Hacking Campaign Targets US Critical Infrastructure »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 7,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Momentum

Momentum

The Cyber Security team at Momentum offers a professional and specialist recruitment service across Cyber & IT Security.

Schneider Electric

Schneider Electric

Schneider Electric develops connected technologies and solutions to manage energy and process in ways that are safe, reliable and sustainable.

NuData Security

NuData Security

NuData Security, A Mastercard Company, is an award winning behavioral biometrics company.

CSIRT-NQN

CSIRT-NQN

CSIRT-NQN is the Computer Incident Response Team for the Argentine province of Neuquen.

Sternum

Sternum

Sternum provides reliable and effective endpoint security for any IoT device, using robust technology and seamless integration.

Czech Accreditation Institute

Czech Accreditation Institute

Czech Accreditation Institute is the national accreditation body for the Czech Republic. The directory of members provides details of organisations offering certification services for ISO 27001.

Rigado

Rigado

Rigado's mission is to enable commercial IoT success by providing high-performance secure and scalable wireless edge connectivity and network infrastructure.

Security BSides

Security BSides

Security BSides is the first grass roots, DIY, open security conference in the world!. BSides is a community-driven framework for building events for and by information security community members.

Level39 (L39)

Level39 (L39)

Level39 is the world's most connected tech community, with over 200 tech startups and scaleups based onsite.

LeadingIT

LeadingIT

Leading IT provides IT support, cloud computing, email support, cybersecurity, networking and firewall services to Chicagoland businesses.

Armexa

Armexa

Armexa is a leading provider of advanced industrial cybersecurity solutions that protect your critical OT and ICS infrastructure against ever-changing threats.

11:11 Systems

11:11 Systems

11:11 Systems synchronizes every aspect of network services for your business. Build your network with the industry’s most trusted expert skills.

link22

link22

link22 offers a high level of expertise within IT security and system solutions. We help public and private actors with highly secure IT-solutions.

ITQ Latam

ITQ Latam

ITQ Latam are specialists in cybersecurity, in a convergent ecosystem of technological solutions in infrastructure, cloud and security networks.

KCS Group Europe

KCS Group Europe

KCS Group helps its clients to identify and deal with any risks, weaknesses and threats which could impact on the business financially or reputationally.

SecurWeave

SecurWeave

SecurWeave's Configurable Hardware Enforced Safety and Security (CHESS) platform has been designed to meet the security and safety criticality needs of the evolving digital industry.