Compugen logo Compugen

  • Client Login
    • Case Lookup
    • Emerge Login
  • Find A Location
  • Careers
  • Blog
  • search
  • menu Menu
  • Business Solutions
  • Products & Services
  • About
  • Customer Stories
  • News
  • Events & Training
  • Contact
  • Compugen
  • Home
  • Business Solutions
    • Industry
      • Reimagine education with Compugen
      • Transformed services. Personalized patient care. Welcome to the Modern Hospital.
      • Reimagine the campus of the future
      • Technology solutions that empower retailers
      • IT Service for small & medium business
    • Strategy & Architecture
      • ​​IT Planning & Roadmaps
    • Datacentre & Cloud
      • Converged Datacentre
      • Cloud Computing
      • Server Virtualization
      • Enterprise Storage
      • Data Management & Protection
    • Communication & Collaboration
      • Business Communications
      • Networking
      • Wireless
    • End User Computing
      • Managing the Desktop
      • Mobility
      • Application Delivery
    • Security
  • Products & Services
    • Managed & Packaged Services
      • Managed & Packaged Services Overview
      • End User Support
      • Infrastructure Support
      • Software Management
      • Managed Print
      • Packaged Services
    • Professional Services
      • Professional Services
      • Program & Project Management
    • Support & Maintenance
      • Imaging & Deployment
      • Ongoing Maintenance
      • Staffing
    • Asset Disposal & Recycling
    • Hardware & Software Management
      • Hardware
      • Software
      • Online Lifecycle Management (Emerge)
    • Financing
  • About
    • Our Story
    • Leadership
    • Our Offices
    • Our Partners
    • Green Initiatives
    • Community Involvement
    • Awards
  • Customer Stories
  • News
  • Events & Training
  • Contact
IT Buzz Banner

Looking for a little inspiration, some ideas or trusted advice? We've got you covered.

Combine 'point-in-time' vulnerability assessments and 'points-over-time' monitoring to mitigate cyber threats

Posted By Jay Parkes September 10, 2012 in

In today's 'everything online' world, vulnerability assessments have become an indispensible aspect of Information Security and crucial to what is referred to as the "AIC Triad"–the availability, integrity and confidentiality of data. Vulnerability assessments involve taking a non-intrusive, surface-level view of an organization's internetworked environment, usually with the help of scanning tools such as nmap, Nessus, Foundtsone and others depending on the type of environment. This view is not only taken from an external perspective, as you'd expect, but also from an internal perspective because an organization's own users can just as easily be the source of a threat. In addition, any outside hacker worth their stripes will likely be able to break into the firm's LAN and thus have access to behind-the-firewall infrastructure from inside. While vulnerability assessments are useful for identifying vulnerabilities that may exist, they don't necessarily prove that any of these vulnerabilities are actually being exploited. They fall somewhat short in this respect because they are merely a point-in-time snapshot–valid only for that moment–and thus don't provide a 'moving' picture of how today's more dynamic threats might be emerging or where an exploit might be headed. The response to this from the industry has been to implement ongoing host and network event monitoring to sniff out and report malicious activity. The two types of services–point-in-time assessment and points-over-time monitoring–are usually conducted separately, with point-in-time assessments most often performed by third-party security consultants and points-over-time monitoring provided as an ongoing service, either by internal IT or by a third-party managed infrastructure services provider engaged to keep infrastructure up and running smoothly. Based on our security industry experience, we strongly contend that both services need to be performed at the same time and the results combined to create a complete and verified profile of an organization's threat risk and to enable analysis that can lead to mitigation. For example, ongoing monitoring may indicate that a high-risk vulnerability is not actually being exploited, thus not currently a major problem, while a low-risk vulnerability, on the other hand, might be showing very high levels of activity and thus require attention. It's the combination of point-in-time and points-over-time services that allows an organization to fully qualify a vulnerability and conduct a business impact assessment of whether they can accept the risk and how best to deal with it. To share your thoughts on vulnerability assessments, or to find out how Compugen's Security Consulting Services can help you identify and mitigate the risk of cyber security threats impacting your organization, feel free to e-mail me or call 1-800-387-5045. This story previously appeared in Compugen's Tuesday Technology Report. It was written by TTR staff with information provided by Compugen's security team.

< Back to all Itbuzz & Articles
  • twitter
  • facebook
  • linkedin
Subscribe via RSS mail Subscribe via Email

Latest News

Ed Tech Awards

Compugen Named Canada’s EdTech Partner of the Year

November 19, 2020

Compugen is proud to announce it was awarded EdTech Partner of the Year for 2020 at the Canadian EdTech Leadership Summit. This award recognizes the extensive contribution Compugen has made to encourage and facilitate educational development through technology across Canada. Read More …

Azure 3

Cloud Adoption made simple in Compugen offerings featured on Microsoft’s Azure Marketplace

November 12, 2020

A simple, 3 step approach for organizations migrating or growing their cloud investment Read More …

News & Articles

What’s happening with Compugen? Read it here.

View all News Items & Articles

Simplify your business and watch it grow.
Let's start a conversation.

We address the bottom of the iceberg. Sign up and get relevant and timely content about our approach to business through an IT lens.

Navigation

Business Solutions

  • Industry
  • Strategy & Architecture
  • Datacentre & Cloud
  • Communication & Collaboration
  • End User Computing
  • Security

Products & Services

  • Managed & Packaged Services
  • Professional Services
  • Support & Maintenance
  • Asset Disposal & Recycling
  • Hardware & Software Management
  • Financing

Customer Stories

  • Corporate
  • Education
  • Energy and Utilities
  • Finance
  • Healthcare
  • Non-profit
  • Public Sector
  • Retail

About

  • Our Story
  • Leadership
  • Our Offices
  • Our Partners
  • Green Initiatives
  • Community Involvement
  • Awards

Careers

  • Working at Compugen
  • Current Opportunities

Contact

  • Find A Location

News & Articles

  • Find A Location
  • Awards

Client Login

  • Case Lookup
  • Emerge Login

Industry

  • K-12 Education
  • Healthcare
  • Higher Education
  • Retail
  • SMB

Connect With Us

  • twitter
  • facebook
  • linkedin
IT Buzz
  • Privacy Policy
  • Accessibility
  • Terms & Conditions
  • National Master Standing Offers (NMSO)

©2021, Compugen Inc. Website by Caffeine Creations.