Author: Jemma Azoulay for Cyber Observer
Malicious attacks were the most common and most expensive root cause of breaches during 2019. These attacks not only because they involved sophisticated techniques but also they were able to successfully exploit poor enterprise Cyber Hygiene. The majority of successful hacks are a result of misuse of the known security vulnerabilities: cybersecurity tools misconfigurations and failure to leverage their security capabilities.
Although the average enterprise security team has more security tools in its arsenal than ever before, this does not ensure full security coverage against the potential hacks and malicious attacks. Some companies have more than 70 unique security applications and tools in place, yet the enterprise is not more secure.
A recent Ponemon Institute study found that 53% of IT leaders have no idea how well the tools and software implemented in their corporate networks are performing. Also, 57% of breach victims said, they were breached due to an unpatched known vulnerability.
Cybersecurity tools are only as effective, as your processes for keeping your network in good working order, also known as Cyber Hygiene.
Here are four questions to ask your security team about enterprise Cyber Hygiene:
- How do you know that your security tools are properly configured and functioning?
- Do you score their functionality?
- Are your tools up to date?
- How many administrators have full access to your security tools?
Cyber Observer has addressed these questions with a unified single-pane-of-glass framework that out-of-the-box displays performance data, internal scoring and provides continuous actionable recommendations for Cyber Hygiene improvement in real-time.
Connected to enterprise IT security and related tools via their management applications (by read-only API), Cyber Observer continually collects, evaluates and displays tool’s performance data by retrieving and analysing Critical Security Controls (CSCs).
The key to reducing cybersecurity risk is awareness and visibility. Without awareness and visibility into your security ecosystem, organizations are at risk of a cyberattack with significant consequences.
According to the Ponemon Institute study, the average size of a data breach exceeded 25,570 records, while 85% of the breaches were the result of hacking and malware attacks. Also, it is estimated that 1 out of 4 companies will lose $1.5 million or more on a data breach over the next two years.
As an integrated awareness and visibility management tool, Cyber Observer provides you with a proactive ongoing security program to keep and improve your cybersecurity line-of-defense.
To improve and raise your Cybersecurity awareness you don’t need to invest endlessly in new security tools. The truth is that the vast majority of data breaches can be prevented with basic actions, such as vulnerability assessments, patching, and proper configurations. The Continuous Tools Status of Cyber Observer provides you with real-time analytics and recommendations for improvements to accelerate your current line-of-defense for:
- Tools misconfigurations based on the manufacturer and industry best practices
- Tools misfunctioning and update issues
- Tools privileges and password management
Cyber Hygiene is a continuous cycle of identifying vulnerabilities, mitigating risks and improving response capabilities.
For more information contact Cyber Observer at https://www.cyber-observer.com/contact-us/a
- Risk Based Security, Inc., Data Breach QuickView Report, First Quarter 2019 – Data Breach Trends
- Ponemon Institute, Cost of a Data Breach Report 2019
- Wing – Research Note: RSA Conference 2019
- Cybersecurity Ventures, Cybersecurity Jobs Report
- Ponemon Institute, Today’s State of Vulnerability Response: Patch Work Demands Attention
- Ponemon Institute, The Cybersecurity Illusion: The Emperor Has No Clothes
- Boston Consulting Group, Are You Spending Enough on Cybersecurity?