My company started dealing with security more seriously and we are trying to start with the first thing – external attack surface.
We are currently considering our cloud infrastructure, workloads and SaaS apps as our crown jewels that have to be always protected so we are trying to understand our exposure among these.
Can you guys please share recommendations on how to approach this problem or what do you do to solve this? I’m wondering whether traditional vendors like CyCognito, Palo Alto Xpanse or Randori are relevant to today’s modern environment.
We are obviously aware of CSPM but that does not cut it and only provides partial value – I’m basically trying to first understand all of our unknowns (like APIs, DNSes and such…), then knowns (like bad config on s3 buckets) and then move forward with accepting risks or remediating those issues.