Analecta Cyber Company Blog

2019-05-21

Know and Maintain Your Information Systems Baseline

man drawing gear graphic Know and maintain your information systems baseline - Analecta Cyber graphic Previously, we discussed the importance of a network baseline and how to identify anomalous activity. Now, it is time to consider a baseline for your organization’s IT systems. NIST Cybersecurity Framework calls on organizations to create baselines for their IT systems that incorporate security principles like the concept of least functionality. 

2019-05-07

Who are Your Users? Personnel and Asset Authentication to Reduce Cyber Risk

Eyes scanning - user and asset authentication User and asset authentication to reduce cyber risk - Analecta Cyber banner Each and every user and asset in your organization needs to be considered a unique identity in order to manage organizational risk appropriately. Employees perform different roles and may have differing levels of access based on these roles. Authentication ensures that employees only have access to the data and devices that are required to perform their jobs.

2019-04-23

Patch Management: Stay Ahead by Planning Ahead

patch management challenges - Analecta LLC graphic Patch management, Plan ahead - Analecta Graphic
Hackers exploit the fact that many businesses do not update their software as often as they should. Zero-day exploits, ones that have not been discovered by the software developers yet, sound flashy and make for exciting news stories. However, it is easier to develop or use an exploit against a known vulnerability. If you lack proper patch and vulnerability management plans, you could be potentially giving cyber criminals free access to your data.

2019-04-16

Stay Ahead of Risk: Making a Better Risk Assessment

keeping balance between risk assessment and business impact analysis - Analecta Cyber Graphic Stay ahead of risk: Making a better risk assessment - Analecta Cyber graphic banner
The risk assessment process is more meaningful and effective when you understand the potential business impacts of a cybersecurity event and the likelihood of these events occurring. It is not possible to predict all potential cybersecurity attacks or vulnerabilities. However, if you identify the events that can have an impact on your company and prioritize your security efforts based on the likelihood of those events happening, your business will have a stronger cybersecurity posture.

2019-04-09

Ensuring Accountability: Define Detection Roles and Responsibilities

Cybersecurity in apple ipad - Ensuring Accountability: Define Detection Roles and Responsibilities Ensuring Accountability: Define Detection Roles and Responsibilities - Analecta Cyber Graphic banner Sound detection processes make a world of difference when it comes to making your organization more secure. Technical solutions ─ such as firewalls and antivirus software ─ take on much of the hard work, but it is also important to clearly define detection roles and responsibilities. Placing a named person with these clearly defined roles and responsibilities increases detection and process efficiency, and ensures accountability in case the process fails.