October 12, 2021

Everyday problems/Pains

What is the hardest thing when you start to implement cybersecurity in your organization?
How do you choose the right tools(like SIEM, SOAR)?

Comments

Ghawblin

“Start to implement cybersecurity” is a horrifying phrase lol. It should be built from the ground up, foundational.

But I’ve been in immature environments so I know your pain.

SIEM is great, but only if you have the man power to manage it daily.

Start with the easy low hanging fruit. Authentication and Authorization. Get MFA in place, solid password policies, etc.

From there, infrastructure security. Good firewall practice, solid DMZ hardening, patching up your crud, asset inventory and security etc. Baselines all around.

From there move into access control. Role-based access, access reviews, ensuring that everyone has the right level of access for their job.

Those three alone are huge milestones. Once that’s in place, you can start to focus on the fine tuning and monitoring like SIEMs and whatnot.

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.