Cyber security has never been just an IT issue. It is a major business issue that requires focus and knowledge. Our Cyber Security By Design framework introduces a whole of company approach to managing cyber risk. It provides a framework to map standards, cut costs and increase efficiency by identifying and managing high priority risks and activities.
Traditionally, cyber security only becomes a focus to organisations after a cyber-attack. This re-active approach is both costly and inefficient – and unfortunately, very common. Cyber Security By Design is a pro-active approach to cyber security, recognising that cyber-attacks are a case of when, not if. Organisations that are prepared and have the right systems and technology in place are able to respond quickly, recover and continue business operations much sooner- with less cost.
Organizations today need to know whether their security architecture is defined according to widely accepted best practices in order to identify policy and configuration weaknesses. Whilst this may seem obvious, research shows that 95% of security breaches have a misconfiguration component, and that 50% of threats could have been avoided if basic security controls were implemented. Yet the reality is, it is often not known what should be checked, and that even if this is known, the process of checking is a time consuming, complex and costly endeavor. The security change management process is further complicated by the fact that configuration and policy settings are in a constant state of flux with hundreds, if not thousands, of changes being applied each year.
The Check Point Compliance Software Blade leverages decades of security expertise and an extensive knowledge of Check Point products and security settings. The Compliance Blade continuously scans the policy and configuration settings defined within the Check Point software blades, security gateways and security management, highlighting all of the configuration weaknesses and errors, and making them available for remediation. Embedded within the Compliance Blade is a library of security best practices that allow organizations to monitor and compare the Check Point environment against vendor and security recommendations. Companies can also create their own personalized firewall policy best practices as part of the ongoing monitoring and analysis.