Banner Default Image

Cyber Security Scorecard Gives Business Real-time Understanding of Security Risks

over 5 years ago by Lucy Cinder

Cyber Security Scorecard Gives Business Real-time Understanding of Security Risks

Cyber Security

As executives struggle to understand their organisations’ exposure to cyber-risk, Huntsman Security has launched The Security Scorecard – the first tool of its kind to give instant visibility of an organisation’s Cyber Security Posture. The Scorecard is a standalone product that gives non IT people such as auditors, risk managers and senior executives a clear understanding of an entity’s cyber security exposure.

The Scorecard technology automatically measures eight key security controls whose effectiveness determines just how secure an organisation is from a cyber-attack.  Based on findings by the Australian Signals Directorate (ASD), these best practice controls can reduce the likelihood of a cyber-attack by more than 85 percent. Measuring against these, the Scorecard gives an immediate and automated understanding of risk and exposure: allowing the business to tune the effectiveness of the controls in line with its risk appetite.

Utilising the “Essential Eight” controls, the solution consists of eight processes that, together: prevent initial attacks, and limit the extent of incidents, recover data and restore systems availability.

The processes are split into a ’Top Four’ – application whitelisting, patching applications, patching operating systems and restricting admin privileges – that are critical to achieving security: plus a further four – disabling untrusted Microsoft office macros, user application hardening, multi-factor authentication and daily backup of important data. The ‘Top Four’ controls are mandatory for Australian federal government departments, and the eight controls collectively complement the best practices put in place by other Governments, such as the UK or USA.

The Security Scorecard continuously measures the performance of the controls, reporting clear metrics and red, amber, green colour-coded status that is easily understood by any audience.

Armed with this information, stakeholders have an immediate overview of their exposure and security teams know whether to focus on these essential processes or examine other ways to reduce risk further.

A standalone product, the Scorecard has a small proactive footprint that sits alongside other security technologies.  Security teams can continue with their primary operations without any distraction and without significant investment in new security systems. Because of this, the Scorecard is easy to implement for any organisation.

The Scorecard can be used by organisations in a supply chain to give visibility of their security posture to partners up and down the chain.

source huntsmansecurity

Industry: Cyber Security News

Banner Default Image

Latest Jobs