SC Report Template
Thursday, October 17, 2019
As part of a good security management program, a networking team need s to ensure a consistent configuration baseline for relational database systems across the network. Even the most well...
SC Dashboard
Thursday, October 17, 2019
Cyber Exposure requires the data collected by the vulnerability scanner to be trusted and verifiable. Nessus provides several plugins that assist in understanding the scan status and provides a level of trust to risk managers. This dashboard brings together all the plugins used to determine if an asset was successfully authenticated against during the vulnerability scan.
SC Report Template
Tuesday, September 24, 2019
As part of a good security management program, the networking teams need to ensure a consistent configuration baseline for Palo Alto appliances across the network. Even the most well managed...
SC Dashboard
Monday, April 22, 2019
When assessing ICS/SCADA Environments , organizations must ensure systems linked to critical equipment and infrastructure are secure and out of reach of potential bad actors. Unfortunately in an OT environment active scanning may be detrimental to normal operations and therefore passive scanning is key. This dashboard leverages information collected passively within the network, which assists security teams in measuring and reducing cyber risk.
SC Dashboard
Friday, April 19, 2019
When assessing an ICS/SCADA Environment’s security posture, one of the first steps is to identify Hosts running across the network. Unfortunately, in an OT environment, active scanning may be detrimental to normal operations and therefore passive scanning is key. This dashboard leverages information collected from Tenable Industrial Security on passively detected operating systems within the network, which can assist security teams in measuring and reducing cyber risk.
SC Dashboard
Thursday, April 18, 2019
Understanding the network topology is a critical first step in understanding the security posture of an ICS/SCADA environment. Due to the criticality of the ICS/SCADA devices, these devices cannot be scanned using traditional active scanning methods. This dashboard leverages information collected from Industrial Security to passively detect operating systems, protocols, and applications used on the ISC network.
SC Report Template
Tuesday, February 28, 2017
Hardening operating systems is a key component to a risk management strategy. However, applications should not be overlooked. CIS has developed several application level benchmarks for ensuring your applications are also securely configured. This report provides a high-level overview of results gathered from CIS compliance scans using the CIS Desktop Application benchmarks.
SC Dashboard
Friday, December 16, 2016
Organizations that must comply with ITSG-33 controls need a consistent and structured way to validate compliance. Failure to comply with federal compliance standards could put the organization at risk for data theft, network compromise, or non-compliance. Using this dashboard, analysts will see a clear and consistent representation of the organization measured against the ITSG-33 controls.
SC Dashboard
Wednesday, December 7, 2016
As organizations comply with mandatory regulations, a method used for user account management emerges in some form to align permissions with the recommendations in the regulation. User accounts should follow organizational standards, but some accounts may not be in line with expected permission levels or even may be compromised. This dashboard assists analysts with keeping user accounts in line, and validates organizational user standards with Canada’s ITSG-33 guidelines.
SC Dashboard
Tuesday, November 29, 2016
Organizations spend a lot of time addressing vulnerabilities and whether or not they should be remediated or mitigated. Analysts may not be aware of what vulnerabilities have the biggest risk to the organization and where to best focus their efforts. This dashboard can assist analysts by providing information on what remediated vulnerabilities can better reduce risk to the organization.
