SMBIT
asked on
Cloud Security Metrics
I am working on a CASB solution and would like to know what cloud security metrics are usually important to management. The plan is to build a dashboard to include these metrics.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Likely best to survey your actual potential users.
Tip: In 2017 I did a 90 day analysis of all the hacked sites I'd cleansed. Here's what I found.
1) All sites were WordPress sites.
2) <10% sites were hacked vectored through WordPress. Hack points were premium/paid themes + plugins. I found no hacks because of outdated WordPress core files, even though some of these sites were running outdated WordPress core versions.
3) 90% sites were hacked because of the following foolishness.
a) LAMP Stacks were running outdated PHP.
b) People were running HTTP WordPress sites rather than HTTPS, using common user/pass combinations which were scraped off the wire.
c) People were running FTP rather than SFTP, using common user/pass combinations which were scraped off the wire.
Summary: Security primarily relates to...
1) Running 100% encrypted protocols, so no clear text user/pass credentials every cross the wire.
2) Vet all premium/paid software as much of this software has backdoors built into them.
3) Keep your entire LAMP Stack (Linux/Apache/MariaDB/PHP/
So in your dashboard... Be sure to find ways to track this sort of data + report this data in a way that's it's actionable.