Climbing the Vulnerability Management Mountain: Reaching the Summit (VM Maturity Level 5)
Only the truly committed ever reach the summit of anything. This sentiment holds true for vulnerability management. An organization cannot reach the summit without a serious commitment to fund and staff the program appropriately across the organization. Reaching ML:5 means tying the program to the business. Everyone must be aligned ... Read More
The Future is Hybrid: Practicing Security in the Hybrid Cloud
By now, many organizations have adopted the cloud in some way. We saw organizations moving whole servers over to the cloud at the beginning, but now we see small parts of a system being moved to the cloud and new cloud native offerings. We’ll use the analogies of Lincoln Logs ... Read More
¿Trabajando desde casa debido al COVID-19? Lo que tú y tu organización deben considerar
En primer lugar, nuestros corazones están con aquellos en todo el mundo afectados por el coronavirus (COVID-19). El director del Centro de Control y Prevención de Enfermedades (CDC) de EE.UU., que asesora al país sobre salud pública, ha indicado que el riesgo para el público en general sigue siendo bajo ... Read More
Working from Home during COVID-19? What You and Your Organization Need to Consider
First and foremost, our hearts go out to those around the world impacted by the COVID-19 virus. The director of the U.S. Center for Disease Control & Prevention (CDC), who advises the country on public health, has indicated that the risk to the general public remains low and encourages Americans ... Read More
Climbing the Vulnerability Management Mountain: Reaching Maturity Level 4
The climb is getting steeper, but thanks to hard work, vision and insight are much keener. At ML:4, all assets are scanned by a combination of agent and remote scans on a normal cadence. This will generate a lot of data dictated by threat and patch priority. Thousands of new ... Read More
Climbing the Vulnerability Management Mountain: Reaching Maturity Level 3 – Base Camp
ML:3 is base camp, and getting here means you have reached a level that others have only dreamed about. At this level, the VM program is very good, and your visibility into threats to the environment is much better than it has ever been. Prioritizing Asset Assessment The biggest change ... Read More
Climbing the Vulnerability Management Mountain: Reaching Maturity Level 2
The path is starting to get steeper now as we climb to ML2. It is time to start defining a vulnerability management program with objectives and goals. This program is expected to grow and evolve over time as the organization grows and evolves. Document the requirements Start by documenting what ... Read More
The Evolution of Phishing: The Spear Is Aimed at You
You can’t go a week without seeing a story about a data breach or ransomware hitting organizations. These breaches can be very costly, but they still continue to show up. Are the good guys not winning the cybersecurity war? Organizations invest millions of dollars in security products and services, but ... Read More
Climbing the Vulnerability Management Mountain: Reaching Maturity Level 1
The time at ML:0 can be eye-opening form many organizations. There are generally a lot of assets discovered that are new or had been forgotten about. Almost every organization discovers their own Methuselah; this is the system that has been around forever and performs some important tasks but has not ... Read More
Climbing the Vulnerability Management Mountain: Taking the First Steps Towards Enlightenment
Just as you would map a hike or climb by creating waypoints you plan to hit each day, you must plan your vulnerability management process by creating similar goals. We call these goals Maturity Levels, from ML0 to ML5, as we defined them in the last blog. You have your ... Read More
