Cybersecurity Strategy: Evolution of Modern Attack Surface

Questions and Answers

What is the main context for the product strategy being discussed?

• The evolution of the modern attack surface (correct)
• Implementing ephemeral resources
• Managing cyber security risks
• Evaluating cloud computing infrastructure

What has changed dramatically over the last decade?

• The attack surface (correct)
• The number of cyber security threats
• The importance of cloud computing
• The focus on public cloud security

What is a characteristic of the modern attack surface?

• It is only composed of shadow IT resources
• It is highly dynamic and ever-changing (correct)
• It is only composed of public cloud resources
• It is relatively static and unchanging

What is a consequence of the interconnectedness of assets in the attack surface?

An exposure in one area can quickly become a breach in a critical part of the business (B)

What is a common challenge faced by organizations in terms of their attack surface?

Dealing with more assets, constant change, and risk that spans across domains (C)

What is the purpose of discussing the challenges faced by organizations in terms of their attack surface?

To discuss important challenges that are preventing them from realizing the outcomes they would like (B)

What is the primary reason for the expansion of the modern attack surface?

Convergence of IoT, OT, and IT systems (B)

What percentage of surveyed organizations expect to improve their overall risk posture?

65% (A)

What is the primary goal of the slide?

To introduce how Tenable can help today (C)

What is a result of vendor sprawl in an organization?

Higher costs and inefficient use of resources (D)

What is the primary goal of the approach discussed in the slides?

To drive better outcomes from the security strategy (A)

What is the benefit of Tenable's contextual intelligence?

An understanding of attack paths and business risk (C)

What is a consequence of the insights generated by security tools being siloed?

Lack of context across silos for prioritization of true risk (D)

What is the outcome of Tenable's consolidation of disparate tooling?

Standardized measurement and communication of risk (A)

What is the current state of the data captured by security tools in most organizations?

Mostly trapped in siloes with limited access (B)

What is the outcome of having too much noise in an organization's security strategy?

Undue exposure for the business (B)

What is the percentage of respondents who expect reduced spending on licensing?

29% (C)

What is the scope of Tenable's complete visibility?

Every asset and risk across the modern attack surface (C)

What is the primary benefit of using the Tenable One platform?

Achieving better security outcomes through complete visibility (A)

What is the first step in the Tenable One platform's exposure management process?

Discovering the entire attack surface (B)

How does the Tenable One platform help organizations prioritize risk?

By aggregating preventable forms of risk and normalizing risk measurement (A)

What is the benefit of the Tenable One platform's workflow integrations?

Faster remediation of security issues (C)

What is the ultimate goal of using the Tenable One platform?

To innovate and grow the business securely (D)

What type of exposure is presented in the form of attack paths?

Technical exposure (A)

What was the improvement in asset visibility for Tyler Technologies?

10x improvement (B)

How much time was saved in managing permission sets in AWS for Tyler Technologies?

1000s of man hours (A)

What percentage of reduction in overpay was achieved for SQL licenses?

30% reduction (A)

How many additional analysts were saved by Ermetic in man hour time for airSlate?

3-4 analysts (B)

In what timeframe was airSlate able to get Ermetic operational and actionable?

Under 30 days (D)

Flashcards are hidden until you start studying