Laying the IT Security Foundation - Key Steps to Preventing Cyber Attacks

Lumension Security • August 12, 2010

Government systems are getting hit on a daily basis by new and ingenious external attacks. Federal, state and municipal agencies, plus government contractors, must find a way to adjust to this evolving threat landscape to prevent these threats from wreaking havoc. It is imperative that government organizations get back to the basics of security and lay a strong security foundation to weather these attacks by proactively addressing their root causes.

Read this paper to learn how to:

Automate and streamline vulnerability assessment and patch management, a long overlooked lynchpin to securing systems;
Comply with FDCC and automate important configuration policies, including rule of least privilege, to minimize impact from a zero-day attack on an unpatched vulnerability;
Leverage application whitelisting mechanisms in addition to antivirus and behavioral analysis to control the application environment.

Previous
The Great Balancing Act: Using USB Flash Drives in Government Environments

Next
Six Critical Elements to Achieve Economies in FISMA Compliance

You might also be interested in …

Research Finds Only 45% Compliance with NIST CSF Controls

Research Finds Only 45% Compliance with NIST CSF Controls

The Convergence of Healthcare Innovation and Compliance

The Convergence of Healthcare Innovation and Compliance

Digital Transformation: Better Ops, Agile Apps, Faster Business

Digital Transformation: Better Ops, Agile Apps, Faster Business

Cybersecurity: One of Healthcare's Leading Business Risks of 2018

Cybersecurity: One of Healthcare's Leading Business Risks of 2018

Take Inventory of Your Medical Device Security Risks

Take Inventory of Your Medical Device Security Risks

Modernizing Malware Security with Cloud Sandboxing in the Public Sector

Modernizing Malware Security with Cloud Sandboxing in the Public Sector

Risk Management Framework: Assessing and Monitoring NIST 800-53 Controls for DoD

Risk Management Framework: Assessing and Monitoring NIST 800-53 Controls for DoD

Federal Agencies Tech Brief: Security Investigation, Detection and Rapid Response

Federal Agencies Tech Brief: Security Investigation, Detection and Rapid Response

Modernizing Government IT: User Identity and Access Management

Modernizing Government IT: User Identity and Access Management

Around the Network

Evolving Threats Facing Robotic and Other Medical Gear

Evolving Threats Facing Robotic and Other Medical Gear

Protecting Medical Devices Against Future Cyberthreats

Protecting Medical Devices Against Future Cyberthreats

Safeguarding Critical OT and IoT Gear Used in Healthcare

Safeguarding Critical OT and IoT Gear Used in Healthcare

Is It Generative AI's Fault, or Do We Blame Human Beings?

Is It Generative AI's Fault, or Do We Blame Human Beings?

Identity Security and How to Reduce Risk During M&A

Identity Security and How to Reduce Risk During M&A

Properly Vetting AI Before It's Deployed in Healthcare

Properly Vetting AI Before It's Deployed in Healthcare

How 'Security by Default' Boosts Health Sector Cybersecurity

How 'Security by Default' Boosts Health Sector Cybersecurity

Medical Device Cyberthreat Modeling: Top Considerations

Medical Device Cyberthreat Modeling: Top Considerations

Transforming a Cyber Program in the Aftermath of an Attack

Transforming a Cyber Program in the Aftermath of an Attack

How the NIST CSF 2.0 Can Help Healthcare Sector Firms

How the NIST CSF 2.0 Can Help Healthcare Sector Firms

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing govinfosecurity.com, you agree to our use of cookies.