How do you manage security across diverse environments like the cloud, mobile devices, and SaaS?

By
Chris Evans
-
0
10
Asked By TechieExplorer92 On

In the current landscape, many of us in operations find that the attack surface extends far beyond just our on-premise servers. With hybrid environments, we need to secure not only our on-prem networks but also address misconfigurations in AWS and Azure, manage user identities, deal with shadow IT, and secure various SaaS applications. This complexity has led to a situation where security tools often focus on isolated issues, whether it's vulnerability scanning or cloud posture management.

As a result, we end up with:
1. Siloed Knowledge: No comprehensive view of overall risk.
2. Reactive Approaches: We spend too much time responding to urgent noises rather than tackling the most pressing issues.

I'm curious, has anyone found a way to centralize visibility across cloud, on-prem, and identity assets? What specific tools or processes have you found effective in moving beyond basic patching cycles and reducing your overall security exposure?

3 Answers

Answered By OpsNinja007 On

It can be overwhelming with all the components involved. My advice is to tackle things one step at a time. Establish a robust configuration management system—whether that’s using Mercurial, Git, or whatever suits you—and document everything about your network and cloud settings. Then systematically fix misconfigurations as you go along. Managing user identities can also be a pain, but addressing these configurations can really help simplify the workload.

Answered By CloudGuru2023 On

You’re spot on regarding the siloed approach. We decided to prioritize our efforts by focusing on attack paths rather than every single finding. We started with addressing cloud misconfigurations using a tool like Orca Security, which gives us decent coverage. The key shift was to concentrate on what’s truly exploitable instead of getting lost in the weeds of every CVE. Automating remediation through PRs and integrating our findings into our workflows has really improved our efficiency, although it’s still a bit chaotic.

Answered By NetworkWhiz43 On

In larger environments, connecting all the tools and integrations you use is crucial. It allows for better visibility across the board. Just make sure you’re not getting lost in the details of each tool but are instead looking at the bigger picture of security across your infrastructure.

Related Questions

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.