Regress? No Way by Brian Contos
Is your security effectiveness regressing? If so, stop it, and read this security brief.
It’s been awhile since I thought about the hardcore punk band 7 Seconds and their hit song, Regress, No Way. But growing up skateboarding in the 80s and 90s in the Reno/Tahoe area, where they were based, meant “everyone” knew them and knew this song.
Listening to it again made me think of “Defensive Regression” and the negative impact it delivers in terms of lost time, money and other resources as well as increased risk.
Defensive Regression can impact security effectiveness through a number of vectors such as changes to taps, span ports, and network segmentation as well as issues with patches, configurations, time (NTP) drift, and parsing. More simply, security that was working, stopped.
Without automated and continuous security control validation and configuration assurance, that once awesome firewall, IPS, DLP, WAF, SIEM, endpoint security solution, etc. can quickly regress and return to a less effective state.
Check out this Office of the CISO Brief we recently put together on this topic titled: Mitigating Defensive Regression. In this brief, you’ll discover how Verodin SIP can help continuously validate that your security solutions are operating effectively across endpoint, network, and cloud as it relates to incident prevention, detection and response.
- Malicious File Transfer: What You Need To Know About an Attacker’s Methods and Techniques To Protect Your Organization From Malware by Ursula Cowan
- Verodin LATAM Party (Porto Alegre Brazil) by Brian Contos
- Policy Evasion: Evasive Techniques You Need to Understand to Prevent Breaches and Attacks by Major General Earl Matthews USAF (Ret)
*** This is a Security Bloggers Network syndicated blog from Verodin Blog authored by Verodin Blog. Read the original post at: https://www.verodin.com/post/regress-no-way
