Skip to content
Tiatra, LLCTiatra, LLC
Tiatra, LLC
Information Technology Solutions for Washington, DC Government Agencies
  • Home
  • About Us
  • Services
    • IT Engineering and Support
    • Software Development
    • Information Assurance and Testing
    • Project and Program Management
  • Clients & Partners
  • Careers
  • News
  • Contact
 
  • Home
  • About Us
  • Services
    • IT Engineering and Support
    • Software Development
    • Information Assurance and Testing
    • Project and Program Management
  • Clients & Partners
  • Careers
  • News
  • Contact

Why asset management is the first step in cyber hygiene

Your challenge: how to manage millions of dynamic, distributed and diverse assets. 

It is ever more challenging for IT teams to secure globally distributed workforces as well as the growing volume of assets “hiding in the shadows.” These factors make it difficult to maintain a complete and accurate inventory of every IT asset and achieve real-time visibility at scale. After all, to keep our doors and windows locked, we need to know how many there are, and where they are. 

And yet we believe the security product industry has failed to deliver a viable solution to the visibility problem, offering hub-and-spoke models that are slow and that saturate networks, limiting visibility in modern and complex environments.  

It’s no wonder that many organizations can’t accurately report essential details about their IT environment. 

To solve this problem, it’s time to get back to basics.

To preserve and improve cyber hygiene, you first need to know what IT assets you have. Do you have 50,000, 100,000 or 500,000 computers and servers in your organization? Where are they? What are they? What’s running on them? What services do they provide? 

Answering those questions helps to develop asset visibility — and follow an asset discovery and inventory process. These elements are the foundation for creating and maintaining cyber hygiene.

Why cyber hygiene depends on asset visibility

To manage your endpoints, you need three levels of knowledge:

  1. What assets do you have, and where are they?
  2. What software is running on them, and are they licensed? You need more than a hostname or an IP address.
  3. How do the machines on your network relate to one another, and what is their purpose? In the world of servers, for example, you may have a group of servers that exist solely to host a service, like a company website.

All companies need this information, and these elements change constantly in modern IT environments. Network assets come and go, especially with bring your own device (BYOD) policies and companies encouraging employees to work from home (WFH).

Also, as networks become more complex and rapidly change, it becomes harder to maintain visibility into them — and the consequences of losing sight of what assets there are and what those assets are doing become greater and greater. 

Why organizations struggle to create asset visibility

There are two primary reasons why organizations struggle to answer basic questions about their assets to maintain cyber hygiene.

1: Endpoint discovery has become a constantly moving target. 

Not every endpoint on a network is a desktop computer, laptop or server. There are printers, phones, tablets and increasing volumes of consumer and industrial internet of things (IoT) devices. That’s why mobile device management (MDM) is a growing application field. 

But why should you have to worry about a consumer IoT device compromising the corporate network? Consider, for example, an employee who is working from home and the company’s security team is receiving alerts that someone is trying to break into her laptop. The source is a refrigerator with malware scanning her home network and trying to get into her device, which was temporarily on the corporate network. The same thing could occur with a smart light switch, thermostat, security camera — you name it.

Every device type can create operational and/or security risks, and the volume of these device types will continue to increase in the coming years. 

2: Legacy tools struggle to create visibility in this new environment. 

Asset discovery tools built 10 years ago preceded many of the systems that modern IT environments now use for daily operations. Two examples: containers and hybrid clouds. 

These discovery tools can’t handle the rate of change we see now. Yet organizations often remain attached to the solutions they’re comfortable with, even though they might not be easy to use. They may take pride in mastering hard-to-use tools. Maybe they wrote custom scripts to make them work more effectively. 

The unintended — and unfortunate — consequences of these limited discovery solutions: IT policies and processes are then crafted not because they’re the best way to address an issue but because they fit the capabilities of the tools in use. It’s the IT version of “if you have a hammer, everything must be a nail.” The policies are: “We must nail things.” Entrenched tools become part of the IT ecosystem. But the best IT policies should be tool-agnostic. A tool built in 1993 — or 2010 — can’t offer that flexibility.

Next step — Zero Trust

Cyber hygiene is just the first step toward creating a more secure organization. The right asset visibility capability will also lay the foundation for nearly any Zero Trust strategy or solution you choose to bring to life. 

When everything is a network device, everything is a potential security vulnerability. So you need policies and procedures that break endpoints into three categories: managed, unmanaged and unmanageable. 

Endpoint discovery is the first crucial step in the trend toward Zero Trust solutions. A CSO article describes Zero Trust as “a security concept centered on the belief that organizations should not automatically trust anything inside or outside its perimeters and instead must verify anything and everything trying to connect to its systems before granting access.”

Threat response and remediation tools are only as good as the breadth of endpoints on which they’re running. With the endpoint acting as the new perimeter, endpoint discovery really is where cyber hygiene and security begin. And implementing a Zero Trust practice is the next meaningful step on that journey.

Discover how to gain a complete, accurate asset inventory by visiting Tanium.  


Read More from This Article:
Why asset management is the first step in cyber hygiene
Source: News

Category: NewsApril 28, 2022
Tags: art

Post navigation

PreviousPrevious post:Multi-cloud adoption and consumption trendsNextNext post:Steps to building a mature threat-hunting program

Related posts

휴먼컨설팅그룹, HR 솔루션 ‘휴넬’ 업그레이드 발표
May 9, 2025
Epicor expands AI offerings, launches new green initiative
May 9, 2025
MS도 합류··· 구글의 A2A 프로토콜, AI 에이전트 분야의 공용어 될까?
May 9, 2025
오픈AI, 아시아 4국에 데이터 레지던시 도입··· 한국 기업 데이터는 한국 서버에 저장
May 9, 2025
SAS supercharges Viya platform with AI agents, copilots, and synthetic data tools
May 8, 2025
IBM aims to set industry standard for enterprise AI with ITBench SaaS launch
May 8, 2025
Recent Posts
  • 휴먼컨설팅그룹, HR 솔루션 ‘휴넬’ 업그레이드 발표
  • Epicor expands AI offerings, launches new green initiative
  • MS도 합류··· 구글의 A2A 프로토콜, AI 에이전트 분야의 공용어 될까?
  • 오픈AI, 아시아 4국에 데이터 레지던시 도입··· 한국 기업 데이터는 한국 서버에 저장
  • SAS supercharges Viya platform with AI agents, copilots, and synthetic data tools
Recent Comments
    Archives
    • May 2025
    • April 2025
    • March 2025
    • February 2025
    • January 2025
    • December 2024
    • November 2024
    • October 2024
    • September 2024
    • August 2024
    • July 2024
    • June 2024
    • May 2024
    • April 2024
    • March 2024
    • February 2024
    • January 2024
    • December 2023
    • November 2023
    • October 2023
    • September 2023
    • August 2023
    • July 2023
    • June 2023
    • May 2023
    • April 2023
    • March 2023
    • February 2023
    • January 2023
    • December 2022
    • November 2022
    • October 2022
    • September 2022
    • August 2022
    • July 2022
    • June 2022
    • May 2022
    • April 2022
    • March 2022
    • February 2022
    • January 2022
    • December 2021
    • November 2021
    • October 2021
    • September 2021
    • August 2021
    • July 2021
    • June 2021
    • May 2021
    • April 2021
    • March 2021
    • February 2021
    • January 2021
    • December 2020
    • November 2020
    • October 2020
    • September 2020
    • August 2020
    • July 2020
    • June 2020
    • May 2020
    • April 2020
    • January 2020
    • December 2019
    • November 2019
    • October 2019
    • September 2019
    • August 2019
    • July 2019
    • June 2019
    • May 2019
    • April 2019
    • March 2019
    • February 2019
    • January 2019
    • December 2018
    • November 2018
    • October 2018
    • September 2018
    • August 2018
    • July 2018
    • June 2018
    • May 2018
    • April 2018
    • March 2018
    • February 2018
    • January 2018
    • December 2017
    • November 2017
    • October 2017
    • September 2017
    • August 2017
    • July 2017
    • June 2017
    • May 2017
    • April 2017
    • March 2017
    • February 2017
    • January 2017
    Categories
    • News
    Meta
    • Log in
    • Entries feed
    • Comments feed
    • WordPress.org
    Tiatra LLC.

    Tiatra, LLC, based in the Washington, DC metropolitan area, proudly serves federal government agencies, organizations that work with the government and other commercial businesses and organizations. Tiatra specializes in a broad range of information technology (IT) development and management services incorporating solid engineering, attention to client needs, and meeting or exceeding any security parameters required. Our small yet innovative company is structured with a full complement of the necessary technical experts, working with hands-on management, to provide a high level of service and competitive pricing for your systems and engineering requirements.

    Find us on:

    FacebookTwitterLinkedin

    Submitclear

    Tiatra, LLC
    Copyright 2016. All rights reserved.