Why IT Departments Need Asset Visibility
Security teams recognize the importance of asset visibility. One of the main concerns that CISOs have shared with us is that “without knowing my territory, how can I defend it?”. However, there is a lack of awareness surrounding the importance of asset visibility to the IT Department. At Lucidum, we discover your unknown assets and mitigate risks to give you complete visibility of your environment.
Below are some examples of unknown unknowns:
- At aggregation level, how many assets do I have? Are they VMs, bare metal servers, desktops, laptops, or mobile devices?
- Where do my assets locate geographically: on premise, in the cloud, in private data centers, or in a lab environment?
- Which asset has an endpoint protection or management agent? Is the agent up-to-date? When did the asset last check-in? Is the hard drive encrypted?
- On each asset, what is the operating system, version, and what applications are installed? Are there any old Firefox versions being used?
- What critical vulnerabilities are there for the operating systems and application?
- How many critical vulnerabilities are left unpatched over time?
- What data does an asset store, transmit, and compute with?
- Are there cloud assets idled?
- How much do those idled assets cost me on cloud?
- Is my asset internet reachable with an unencrypted data volume?
- Does my S3 bucket have confidential data that is unencrypted, accessible, and open to the public internet?
- With a large remote workforce, what devices are being connected to the corporate VPN?
- Which employees are connecting to non-IT approved SaaS services?
- Who owns or uses the assets?
- Which asset or group of assets has the highest total risk (user, data confidentiality, business operation criticality, internet facing condition, vulnerabilities detected, etc.) that should be managed first?
There’s an infinite amount of unknown unknowns. Each member of the IT Department, from CIO to the dev/ops team, need constant visibility into their enterprise’s known and unknown assets. Therefore, asset visibility is not only crucial to CISOs and Security Engineering teams, but also necessary for IT.
Lucidum is implementing Machine Learning and algorithms to solve the unknowns and bring complete visibility to all assets. Lucidum also enables IT and security to take action in real-time.
Some examples of use cases are:
- Discover all assets in your environment and provide continuous updates to CMDB (Configuration Management Database).
- Locate all assets with critical vulnerabilities and severe CVEs.
- Find vulnerable and outdated OS and application versions.
- Identify overpaid and underutilized cloud assets, and terminate them to reduce cost.
- Detect assets with IP addresses to expedite incidence investigations.
- Eliminate the risk of cloud data exfiltration from internet-accessible instances, databases, and storages.
- Sort all assets compliant with security policies, including encryption enforcement and access control.
- Uncover non-IT managed assets accessing enterprise G-Suite or Office 365, and generate alerts.