Security News > 2021 > July > The Definitive RFP Templates for EDR/EPP and APT Protection

The Definitive RFP Templates for EDR/EPP and APT Protection
2021-07-16 04:38

The vast majority of security decision-makers acknowledge they need to address the APT risk with additional security solutions but struggle with mapping APT attack vectors to a clear-cut set of security product capabilities, which impairs their ability to choose the products that would best protect them.

Cynet is now addressing this need with the definitive RFP templates for EDR/EPP and APT Protection, an expert-made security requirement list, that enables stakeholders to accelerate and optimize the evaluation process of the products they evaluate.

To adequately defend from such attacks one must be well acquainted with both of these attack surfaces, as well as with the various vectors attackers use to target them.

"The best analogy is a Ninja warrior with multiple weapons,"' says Eyal Gruner, Co-Founder of Cynet, "As an attacker you seek the weak link until you find it-vulnerable endpoint, VPN credentials, networking misconfiguration, insecure DMZ architecture it's really endless." "But of course, there are vectors that are used more. Some, because they yield better results and some because they are easier to execute. Like any industry, there are common practices you can clearly map out." This attack vector map should reside on the backend of any cybersecurity purchase.

To address this need, Cynet releases the Definitive EDR/EPP and APT Protection RFP templates, to be used as a free resource by organizations that seek protection from advanced threats.

"We took the knowledge we've accumulated throughout years of offensive security and attack research," says Gruner, "And asked ourselves - as attackers, what kind of protection would have strained us to the degree that we might reconsider shifting to another target." "It was a fascinating journey for us as well which really forced us to objectively reflect on the pros and cons of a wide attacking tools array." This is exactly the missing link in the knowledge of the common security buyer, which makes perfect sense-after all non-attackers are not expected to master the attackers' best practices book.


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/KY7v6Zs6YKQ/rfp-templates-for-edr-epp.html