Mary-Louise Hoffman
Matt Brown, vice president of homeland security and cyber solutions at Knowledge Consulting Group, says organizations must ensure their information technology infrastructure has the basic tools to identify security vulnerabilities.
Brown wrote in a piece for Security Magazine published Thursday that enterprises should review their systems while prioritizing system weaknesses by potential impact so they could address serious threats.
He recommends that IT security initiatives retain fundamental cybersecurity elements and pursue continuous monitoring methods.
“It is still important to pursue new approaches, such as continuous monitoring, and emerging technologies, but it is just as critical to take that step back to conduct the due diligence to validate foundational capabilities are in place,” he stated.
A continuous monitoring program involves the adoption of tools and methods for organizations to manage software and hardware inventory and scan networks routinely for any malicious activity, according to Brown.
He noted the commercial market seeks to implement a concept similar to the Department of Homeland Security‘s continuous diagnostics and monitoring initiative but adoption could be hindered by the evolving network environment.
