CIS Benchmark SYSTEM HARDENING VULNERABILITY MANAGEMENT

A nice summary of security best practices in response to breach activity last year - not much new...

 

Writing on Pro-Security Zone, Michael Aminzade, VP Global Compliance & Risk Services at Trustwave, summarizes lessons learned in 2014.

Device hardening is key - adopt CIS Security Benchmarks for an off-the-shelf hardened build standard.

Similarly, make sure that security best practices are being operated by any 3rd Party IT Service Providers - breach origin has frequently been traced back to 3rd party credentials/access being exploited.

Test security regularly, ideally continuously. Vulnerability scanning and Penetration Testing are both highly effective for assessing cyber security defenses, but in fluid IT environments with lots of changes, security must be assessed continuously with an emphasis on breach detection. NNT's Closed-Loop Intelligent Change Control is the only way to maintain complete visibility of changes and spot malware when it strikes.

You cant always stop the breach, so make sure you are also geared to spot the breach when it does happen.

Read the full article

 

Share this blog post

Products
USA Offices
New Net Technologies Ltd
Naples
9128 Strada Place
Naples, Florida, 34108
Atlanta
201 17th Street, Suite 300
Atlanta, Georgia, 30363.

Tel: 1-888-898-0674
email USinfo@nntws.com
NNT Logo
UK Office
New Net Technologies Ltd
Spectrum House, Dunstable Road
Redbourn,
St Albans

Herts
AL3 7PR

Tel: 08456 585 005
Fax: 08456 122 031
email info@newnettechnologies.com
Connect with NNT
Google+ Linkedin Twitter - Change Tracker Facebook rss feed YouTube
Sign up to NNT's IT security and compliance monthly newsletter. Get breaking security news, how-to tips, trends and commentary direct to your inbox.

Sign up to the NNT newsletter