Tuesday, 05 Feb 2013 1:00PM EST (05 Feb 2013 18:00 UTC)
Speakers: Eric Cole, PhD, Wes Medley
The critical controls is a proven method for increasing security across an organization. Implementing the critical controls is an important step but what is also very important is to automate the auditing of the controls to allow for continuous monitoring across the organization. Attackers can move very quickly, compromise systems and go undetected for a long period of time. In a perfect world, organizations would never be compromised; however, we do not live in a perfect world. Organizations are going to be compromised, therefore the focus needs to be on early detection with appropriate remediation. By automating the controls, continuous monitoring can timely detect unauthorized changes in an organization which could be indicative of an attack. One of the best ways to minimize damage to an attack and increase the overall security is to constantly be aware of the state of an organization, looking for deviations from the norm. Continuous monitoring via the critical controls will allow an organization to implement more effective security.