Forescout’s platform includes enhancements that will help customers fully understand the risk posture of their attack surface and allow their security teams to focus on remediating the assets that pose the greatest risk.
Build on a central base of visibility and control
The Forescout platform is the only automated cyber security platform that provides continuous discovery, assessment and control of all managed and unmanaged connected assets (IT, IoT, IoMT and OT) from the campus to the data centre and perimeter. It plays a key role in the cyber defence of many of the world’s largest and best-known enterprises and agencies. Our customers report that they see more than 30% more assets in their environment than previously known when they deploy our platform.
Yet we constantly hear from customers about the need for even greater value, not only to understand the details and risks of connected devices, but also to be able to take the best actions based on accurate information.
What I heard loud and clear, particularly from our customer advisory board members, is this:
- Can you give me a clear picture of my attack surface and the gaps in my security tools?
- What is the biggest gap in my defences?
- What vulnerability is an attacker most likely to exploit?
- Do I have gaps or misconfigurations that mean I will fail my next audit?
- What problems do we need to fix first?
Demonstrate the effectiveness of your strategy and investments
Today, CISOs must not only reduce real risk and exposure, but also be able to demonstrate to their boards the value of their security investments. If ChatGPT were to summarise my conversations with customers, it might go something like this:
We love the real-time contextual asset data provided by Forescout® eyeSight, but we struggle with how to best use the data to implement controls. We have policies in place, but we don’t know how effective they are at reducing our exposure, and we need to be able to report a reduction in risk over time, for compliance, audit and other business mandates.
In other words, you need a simplified way to maintain persistent, real-time asset intelligence for every connected device, managed or unmanaged, physical or virtual, including OT/ICS, IoT devices, and special subsets such as medical devices. The platform enhancements we are making will provide that intelligence to help you effectively demonstrate a reduction in the risk posture of your attack surface.
Persistent asset intelligence is also essential for more effective threat detection and faster investigation of a breach or incident to identify the root cause, such as when a compromised device’s configuration or risk posture changed. It could then identify similar devices and exposure gaps to fix problems before another incident occurs.
Identifying, quantifying and prioritising cybersecurity risk
The new exposure and risk management capabilities in the Forescout platform will improve your security posture by:
- Identifying your attack surface exposure
- Quantifying the risk presented to your organisation
- Prioritising remediation actions through guided mitigation, historical context and a risk-based approach to incident response
The most recent enhancements to our platform include a cloud-native multi-factor risk score that combines attributes of the configuration, function and behaviour of each connected asset. You can see overall risk presented as a whole, in executive-style dashboards and as risk over time for each individual asset over the last 90 days. The score correlates all the asset data we collect to help you understand the actual risk of each device and the overall risk posture of your entire attack surface.
You can view the original post from here.
