Vulnerability, Configuration Management

Gartner advocates “continuous” configuration and vulnerability management and proactive monitoring products to address weaknesses introduced when the environment changes. The analysis firm cited a recent study conducted by the Australian government which found that at least 85 percent of targeted attacks against the country’s Department of Defense could have been prevented through properly implemented whitelising and ongoing patching of Web browsers and their components and other applications as well as operating system flaws. It also recommends restricting user privileges. Prioritize security patching, implement a dedicated vulnerability analysis product and configuration management and monitoring product, according to Gartner.