Why are current cybersecurity incident response efforts failing?

2022-05-26 04:00

This article will explore why current cybersecurity incident response efforts are failing, and how a proactive, risk-based approach enables companies to reduce exposure most effectively and to maximize the return on their limited resources.

Obtaining a deeper understanding of an organization's business-critical application landscape and creating a playbook focused on the assets, systems, and processes that matter most can be far more effective at overall organizational risk reduction.

A risk-based approach to incident response enables enterprises to prioritize vulnerabilities and incidents based on the level of risk they pose to an organization.

Conventional tools such as firewalls and vulnerability scanners are necessary, but while they may cover system-level concerns in business-critical applications, they simply do not support the application itself.

The underlying operating system vulnerability may be detected, but not the SAP custom code issue, or the E-Business Suite application layer flaw.

Security officers and incident response teams need to prepare themselves to bring the same standards and the same security operations maturity that exist elsewhere in the IT environment into the formerly sacrosanct domain of the business-critical applications themselves.

News URL

https://www.helpnetsecurity.com/2022/05/26/incident-response-approach/

#cybersecurity #incidentresponse