Bolstering Resilience In The Age Of Expanding Threats

Uploaded on 2024-02-09 in TECHNOLOGY--Resilience, NEWS-Cybersecurity News, FREE TO VIEW

The recent implementation of the Securities and Exchange Commission’s (SEC’s) cybersecurity regulations has mandated public companies reveal any material cybersecurity incidents within a stringent four-business-day timeframe. This signifies that high-profile breaches, like the recent 23andMe breach, which compromised the data of approximately 7 million customers, will now carry significantly more severe ramifications.

The SEC's regulations represent a new wave of transformative alterations in regulatory compliance, hinting at a more profound shift in how companies approach and adhere to regulatory standards.

These regulations, just a fraction of the evolving landscape of compliance changes, signify a broader shift in accountability amid an increasingly broad attack surface and complex threat landscape. As the scope and complexity of potential threats continue to grow, navigating this complex environment emphasizes the critical need for comprehensive cyber exposure management.

Navigating The Expanding Attack Surface

The contemporary organizational attack surface is undergoing exponential expansion, propelled by the digital shift: migration to cloud infrastructure, widespread remote work setups, accelerated development timelines, insufficient validation processes, and heightened software complexity. Collectively, these factors present numerous openings for cyber attackers to exploit.

As hybrid networks expand in size and complexity, the attack surface expands, increasing the likelihood of experiencing a cyberattack. An organization requires comprehensive visibility into vulnerabilities across its environment and needs to achieve this efficiently. However, the production of reports is often a manual and time-consuming process. Additionally, determining whether the focus is on remediating the riskiest vulnerabilities with the greatest potential impact on the business can be challenging.

Organizations must find ways to manage their cyber exposure more effectively in a world of heightened risk. It is imperative for security teams to handle and mitigate their cyber exposure adeptly. The number of vulnerabilities listed in the National Vulnerability Database (NVD) nearly reached 200,000 at the beginning of 2023. The emergence of new vulnerabilities is escalating rapidly - NVD reported an addition of over 25,000 vulnerabilities in 2022, signifying a 25% surge compared to the preceding year. Vulnerabilities aren't just increasing; they're surging at an unprecedented pace.

Shifting From Conventional Responses

Amid the exponential rise in vulnerabilities, a stark reality emerges: the era of addressing every single vulnerability has become obsolete.

The sheer volume of vulnerabilities surpasses the capacity to fix them all, rendering the conventional response - often a mix of impromptu vulnerability scans, spreadsheet tracking, and periodic patching cycles - ineffective in meeting this formidable challenge.

This is why more and more organizations are looking for vulnerability management solutions to help them address this challenge. However, not all vulnerability management solutions are created equal.

The Five Stages of Comprehensive Vulnerability Management

A comprehensive vulnerability management program integrates technologies across five distinct stages:

1.    Assess:   This phase involves compiling an exhaustive inventory encompassing assets, endpoints, servers, network devices, cloud infrastructure, applications, and users essential for inclusion within the vulnerability management program.     

2.    Discover:   Here, aggregated security data from various sources, such as vulnerability scans and threat intelligence feeds, is overlaid to unveil comprehensive insights.

3.    Prioritize:   Quantifying cyber risks based on individual exposures takes precedence in this phase, allowing for the prioritization of resources to maximize effectiveness in addressing vulnerabilities.

4.    Remediate:   Choosing the most suitable remediation methods is pivotal in this stage. If a complete resolution isn't viable, selecting from an array of compensating controls becomes necessary.

5.    Report:   Effectiveness evaluations of remediation efforts and communication of risk levels to pertinent stakeholders form the core focus of this phase, ensuring transparent and informed decision-making.

Strategic Prioritization For Cyber Resilience

This strategic prioritization empowers efficient allocation of resources, ensuring that critical vulnerabilities receive immediate attention, reducing the likelihood and impact of potential cyber threats.

Organizations can use this comprehensive strategy to identify vulnerabilities more effectively and execute tailored remediation plans while providing clear and transparent reporting mechanisms. This approach ensures a systematic and efficient response to the evolving threat landscape, enhancing overall cyber resilience.

Howard Goodman is Technical Director at Skybox Security

Image: Shubham Dhage

You Might Also Read: 

Reducing The Risk Of Weak Links With Consolidation:

___________________________________________________________________________________________

If you like this website and use the comprehensive 6,500-plus service supplier Directory, you can get unrestricted access, including the exclusive in-depth Directors Report series, by signing up for a Premium Subscription.

  • Individual £5 per month or £50 per year. Sign Up
  • Multi-User, Corporate & Library Accounts Available on Request

Cyber Security Intelligence: Captured Organised & Accessible

 

« Neuralink Implant A Brain Chip In A Human
Chinese Hacking Campaign Targets US Critical Infrastructure »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Veeam

Veeam

Veeam is the leader in intelligent data management for the Hyper-Available Enterprise.

Iceberg

Iceberg

Iceberg has been established to provide companies with cyber security experts who will protect businesses from the unseen threat of cyber crime.

Virgil Security

Virgil Security

Virgil Security provides easy-to-deploy and easy-to-use cryptographic software and services for use by developers and end-users.

CloudAlly

CloudAlly

CloudAlly provides online cloud to cloud backup and recovery solutions, which backs up daily changes in your SaaS to unlimited Amazon S3 storage and makes it available for restore or export.

Infigo IS

Infigo IS

INFIGO IS specializes in information security consulting services. Our employees are leading information security experts in Croatia.

Hexnode MDM

Hexnode MDM

Hexnode MDM is an award winning Enterprise Mobility Management vendor which helps businesses to secure and manage BYOD, COPE, apps and content.

GV (Google Ventures)

GV (Google Ventures)

GV provides venture capital funding to bold new companies in the fields of life science, healthcare, artificial intelligence, robotics, transportation, cyber security and agriculture.

Hubraum

Hubraum

Hubraum is Deutsche Telekom’s tech incubator, helping startups to create new business opportunities in areas including data analytics, AI, robot process automation and cyber security.

Marlabs

Marlabs

Marlabs is a Digital Technology Solutions company that helps companies adopt digital transformation using a comprehensive framework including Digital Automation, Enterprise Analytics and Security.

Neovera

Neovera

Neovera is a trusted provider of managed services including cyber security and enterprise cloud solutions, committed to delivering results through the innovative use of scalable enterprise-grade tech.

GBT Technologies

GBT Technologies

GBT Technologies is a technology company focused on chip design and software to enable IoT, global mesh networks, and for applications relating to artificial intelligence.

Secure Ideas

Secure Ideas

Secure Ideas is focused on penetration testing and application security including web applications, web services and mobile applications.

ENSCO

ENSCO

The ENSCO group of companies provides engineering, science and advanced technology solutions that guarantee mission success, safety and security to governments and private industries worldwide.

Arcturus Security

Arcturus Security

Arcturus is a CREST-approved cyber security consultancy created by experts in the field.

Hadrian

Hadrian

Hadrian is modernizing offensive security practices with automation, making them faster and more scalable. Equipped with the hacker’s perspective, companies can now know what their critical risks are.

Framework Security

Framework Security

With Framework Security, you get more than a consultancy; you get a partner dedicated to simplifying cybersecurity and protecting your business in the most efficient way possible.