Services / Defense Implementation

Security Hygiene Assurance

Limit the risk of major security errors by focusing on hygiene-first and building a strong security foundation.

Defining Security Hygiene

Hygiene Aims at Avoiding Major Security Incidents

While prioritizing security workloads, a key question lies in identifying what is truly important. In other words, focusing on topics that have the highest impact on security and take the least resources to get done. This is a sensible approach, however a more valuable perspective is to rank missing hygiene to the top: Hygiene entails all topics and initiatives that inherently carry a substantial potential for major security incidents. Hence, workload in this category should be addressed adequately and quickly to build a resilient foundation.

The Challenge

Achieving Hygiene Quick & Efficiently

The goal for most companies should be to achieve the hygiene state before setting higher targets. A strong baseline protects against major incidents and chaotic situations. In addition to planning out what needs to be done, the simple operational challenge is in selecting and implementing solutions that are required to cross the finish line.

Delivery Process

Designing the Engagement

The purpose of the design phase is to jointly discuss and agree upon management parameters of the assurance program. This includes primarily key objectives, budget, scope, timeframe, contributing parties, milestones and similar aspects. Further, the design phase aims to capture stakeholder wishes and expectations.

Identification of Lacking Hygiene Aspects

To begin the program, an assessment is conducted that determines what aspects of hygiene are already in place and where gaps exist that need to be filled. If defense infrastructure and tooling exists in the environment but is not yet leveraged for the purpose of achieving security hygiene, this will be identified as well.

Developing Hygiene Initiatives

Very much like a for a regular security program roadmap, initiatives need to be developed that ultimately ensure the hygiene state. The emphasis will be to bring in defense solutions that address hygiene at scale, meaning that work short term and long term even in high load or highly regulated environments. Defining the appropriate objectives and initiatives in alignment with budget and other relevant requirements is part of the third phase of the engagement.

Execution & Delivery

Next, our teams will implement the work necessary to achieve the hygiene state in the target environment. This phase can be executed solely by CISOCON or in close collaboration with onsite teams and development workflows.

Our Service

We've created the following service for you.

01
Services / Defense Implementation

Hygiene Assurance Program

Our Hygiene Assurance Program has been designed to support you to achieve the hygiene state quickly and cost efficiently.

Security Hygiene Pyramid