What Are Their Vulnerabilities?: A SANS Survey on Continuous Monitoring

by David Hoelzer
Sept. 1, 2017 0 comments SANS Institute

Continuous monitoring is a complex set of processes and practices that involves presenting a true representation of an organization’s exposure to cyber risk. According to results of a new SANS survey, the majority of IT professionals believe their continuous monitoring programs are mature or maturing (by maturing, we mean they are improving these programs). Yet how often and how comprehensively they scan—and follow through with remediation—reveal a different picture. The results raise several questions: What should a mature continuous monitoring program look like? How can you measure the maturity of your organization’s program today? And, what elements of a successful program are you missing?