As an answer to this emerging challenge, XDR provider Cynet has added a new SaaS Security Posture Management tool to its existing platform. Regardless of the size of an organization or its security team, managing the security policy and posture of dozens to hundreds of SaaS applications is a complex task, and one that requires the right tools to expedite and optimize.
Microsoft is updating Microsoft 365 to allow admins to better manage insider security threats in their environments with improvements to risky activity detection and visibility. Insider Risk Management enables Microsoft 365 cloud services platform customers to detect, investigate, and remediate insider security threats within their organizations across Office, Windows, Azure, and third-party apps like HR systems.
Microsoft has made available Privacy Management for Microsoft 365, a new AI-based solution to help enterprises manage data privacy risks and build a privacy resilient workplace, as well as automate the response to subject rights requests at scale.Privacy Management is built-into the Microsoft 365 compliance center and is currently available as an add-on to organizations with Office 365 A1/E1/A3/E3/A5/E5 and Microsoft 365 A3/E3/A5/E5 subscriptions.
With the massive surge in ransomware attacks in the last few years, businesses can't afford to ignore the increasing possibility of facing one, and should invest money and effort into crisis management. Practice in crisis management steps requires maximum participation by the organization.
Data management initiatives in the finance sector, such as data collection, integration, and automation, are being constrained by a severe lack of digital skills and maturity. 64% of technical decision makers feel their organizations lack the skilled technical resources to integrate external data into core platforms, and, 57% believe they are only at a foundational level of digital maturity.
Cloud security is the umbrella that holds within it: IaaS, PaaS and SaaS. Gartner created the SaaS Security Posture Management category for solutions that continuously assess security risk and manage the SaaS applications' security posture. While the native security controls of SaaS apps are often robust, it falls on the responsibility of the organization to ensure that all configurations are properly set - from global settings, to every user role and privilege.
CIOs have had their hands full since the start of the pandemic with three risk management and governance priorities weighing heavily on their minds. CIOs are becoming more sharply focused on information security and risk management since the pandemic.
The maturity model looks at the state of remote and hybrid work and provides a path for organizations to reach higher levels of maturity for increased employee retention and satisfaction, as well as improved productivity. With estimates stating that one in five workers will be remote and a majority working in a hybrid environment, and 40% of organizations embracing a hybrid work strategy over the next two years, the digital employee experience is more important than ever before.
57% of respondents stated that remote work has increased the complexity and scale of patch management. A patch for the vulnerability exploited by the ransomware had existed for several months before the initial attack, yet many organizations failed to implement it.
Vulnerability scanners are not enough, according to an expert who champions an all-encompassing holistic approach to vulnerability management as a means to eliminate surprises. If that's not bad enough, there is confusion surrounding managing vulnerabilities, with most organizations depending on vulnerability scanners and some kind of policy as to when to update or patch the software/hardware.