Factoring IoT Devices into Detection and Response: A SANS Whitepaper

  • Thursday, 28 May 2020 1:00PM EDT (28 May 2020 17:00 UTC)
  • Speakers: Matt Bromiley, Michael Sanders

IoT is growing in the enterprise and becoming of greater concern as an unprotected threat vector.

An organization needs to understand if and how enterprise IoT devices like smart TVs, badge scanners, projectors, whiteboards, and printers, as well as unknown rogue devices, have been connected to the network.

  • Is your security team aware of every enterprise IoT device that sits in an office, lobby, conference room, or boardroom?
  • Have you completed an assessment of the network security risks from unmanaged, nonstandard devices?
  • Is there a plan for detecting and responding to malicious traffic if IoT devices are compromised?

This paper explores the growth of enterprise IoT devices and the implications for incident detection and response. The enterprise device landscape is constantly changing; your information security team must adopt practices to easily adapt.

With the right approach, your team can quickly identify IoT devices for greater visibility to detect and respond to any new threats that come their way.