A New Appreciation for Continuous Asset Monitoring


Does asset monitoring really have to be continuous? In a recent RSA blog post titled, “Security GRC Fundamentals: Creating and Utilizing a Business Context,” the case was made that without the business context provided by accurate inventory and the prioritization of information systems and data, all the intelligence in the world about threats and vulnerabilities has no relevance. This argument was further advanced in RSA’s post, “Security GRC Fundamentals: Monitoring Assets,” on the evidence that nearly half of confirmed data breaches involved assets or data the organization did not fully know about.

Source: Speaking of Security – The RSA Blog and Podcast