The National Coordinator for Counterterrorism and Security (NCTV) in the Netherlands recently noted that Dutch companies display limited cyber-resilience, as evidenced by the effects of ransomware attacks such as 'WannaCry' and 'Petya'. One of the key reasons for this vulnerability is that many companies are still unaware of exactly which software they are using. As a result, they lack insight into how secure various applications are, leaving them open to vulnerabilities. Time to take action!
By Ron Vermeulen, Cloud Manager - August 1, 2017
Reading time: 3.40 minutes
A popular way many organizations try to get to grips with their software estate is by using inventory tools. Sorting this data by category and function will often take months, but this information provides valuable insights for consolidation or other cost-reducing actions.
Besides knowing what software is running (and whether it's redundant or not), it is also essential to know its security level. When mso any programs are running, it can be especially difficult to execute the flow of security patches, and to validate whether they have been installed successfully. A practical overview to determine which systems need attention to prevent any vulnerabilities, attacks and damages would be an invaluable resource in such cases. Immediately identifying if a patch was not installed successfully, and leaving room for a fast response - say 'hello' to the Portfolio Management Platform.
Overview with a single push of a button
Although this seems very complex and time-consuming in theory, this does not need to be the case in practice. The COMPAREX Portfolio Management Platform provides a tailor-made overview with just a single push of a button. This smart DNA analysis tool categorizes all the software within your organization – including patches – using the inventory tools you already own.
Furthermore, businesses can also benefit from the information we receive through our worldwide network of clients, and the strong relationships COMPAREX has with security solutions providers.
Up-to-date overview of high-risk software
In addition to information about the latest security updates, the dashboard also provides reports about high-risk software being used within the organization. This could include games or programs like BitTorrent, but also seemingly less dangerous software such as Dropbox or OneDrive. As long as they are business accounts, there is no problem. However, this changes when programs sync to personal accounts using business email addresses. If that person leaves the organization, the data is no longer accessible, and this would formally constitute a data leak. This is why an up-to-date overview of such software - seemingly high-risk or not - is essential for security.
End of support software on the project calendar
Another risk that is often overlooked, is software which has reached end-of-support. These packages have the potential to make an organization vulnerable as there will no longer be any updates to them. Emergency situations occuring with software past its end-of-support can cause huge problems, especially when critical systems rely on it. When these older versions can no longer rely on updates and support from suppliers, this goes beyond being an inconvenience, since companies have generally paid for a maintenance contract.
To prevent these problems, the COMPAREX Portfolio Management Platform provides a complete overview of software which will no longer receive support in the near future, enabling a company to be proactive. As an example, the upgrade to a new edition could already be scheduled on the project calendar. Anticipating the situation makes the risk more controllable, and potentially avoidable.
Unfortunately, the number of cyber-attacks are not decreasing. It is crucial that companies take all possible precautions, exactly for that reason. The COMPAREX Portfolio Management Platform offers full transparency of your software landscape and any security risks, all presented in one clear dashboard. As a result, digital resilience will be further safeguarded at the highest possible level.
Opt for a Proof of Value now
Would you like a clearer understanding of your company’s current IT security level? Would you like to confirm that all your patches have been implemented successfully, and your software is still supported? In three days, our experts will create a 360° analysis of your entire software landscape presented ub a clear dashboard.
With the COMPAREX Portfolio Management Platform, gain easy access to all the information you need to optimize your security.
If you would like to have more information on the COMPAREX Portfolio Management Platform, please contact Cloud Consultant Sven Lap via email@example.com or your accountmanager.