New security assessment tool provides a security "posture score" based on their protection-level and flaws in the network.
Security services vendor SecurityScorecard rolled out a free security assessment tool yesterday that scans weaknesses and vulnerabilities across an organization’s network and delivers a status report with a snapshot of security flaws within the infrastructure.
The security assessment includes a "security rating" and "posture score" based on Internet traffic to and from an organization. An organization’s security rating is based on on several factors including end-of-life products, hacker chatter, social engineering, patching frequency, dorking, and malware.
The assessment process monitors and classifies risks associated with the application, network, and password security for any third- and fourth party vendors as well. The goal of the assessment is to provide companies insight into how secure their organization is compared with competitors in their vertical industry.
"It's not practical to completely rely on questionnaires and penetration tests to determine the security posture of 3rd party vendors," said Michael Belloise, director of information security at TriNet, which uses SecurityScorecard’s service. “In addition to questionable accuracy, it only provides us with a point in time assessment and may not accurately reflect the true cybersecurity risk of doing business with someone.”
Read more about the Free SecurityScorecard assessment here.
About the Author(s)
You May Also Like
Securing Code in the Age of AI
April 24, 2024Beyond Spam Filters and Firewalls: Preventing Business Email Compromises in the Modern Enterprise
April 30, 2024Key Findings from the State of AppSec Report 2024
May 7, 2024Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024