After publishing the landmark Automating Defense: Implementing Continuous Discover and Validation Horizon Report, Stratascale convened an exclusive panel of client CISOs to discuss attack surface management (ASM) and automated discovery and validation.
Stratascale VP for the Office of the CISO Michael Wilcox, Director of Security Operations Advisory Services Ryan Benson, Senior Technical Advisor Joseph Karpenko, and Lead Cybersecurity Analyst Michael O’Neil kicked off the session with our guest CISOs by examining four assumptions that underlie the research:
Discussion on these points helped shape the deeper roundtable discussion of ways to establish ASM within F1000 businesses. Some of the highlights included:
The examination of core assumptions provided the roundtable with a strong basis for a deeper dive into investment drivers and actions addressing ASM and automation, tracking through the “iceberg” diagram that was used to surface specific ASM considerations. The balance of the roundtable session dealt with a number of related issues – success metrics, budgets, and ways of integrating security into business processes – that branch through and beyond ASM, and which have already provided grist for further discussion.
Thinking back on the roundtable, though, the examination of underlying assumptions stands out as an essential first step in building insight for everyone involved in the session. In both best practice analysis and in cybersecurity operations, a well-defined foundation is a critical element of success.
How Stratascale can help: Stratascale’s ATLAS service is designed to address the problem of external cyber risk through continuous attack mapping and validation. By surveying and verifying the overall attack surface of the organization, ATLAS helps large companies overcome shortages of people, processes, or tools, and enables them to integrate critical attack surface data into their existing SOC and/or MSSP/MDR solutions. This allows companies to understand and prepare for the most probable cyberattacks with the right security controls, detections, and response actions.
If you’re ready to learn more about how ATLAS can help protect your organization’s assets, reach out to ATLAS@stratascale.com.
Michael is a world-leading IT industry analyst. He has led North American and global initiatives focused on developing insights and strategies that connect technology solutions with business needs, combining data, knowledge, analysis and advanced content delivery to define options for IT and buy-side businesses.