SIEM (Security Information and Event Management). TM (Threat Management) and Vulnerability Assessments are at different ends of the IT security spectrum. SIEM highlights where things went wrong, whereas VA aims to proactively identify weaknesses and prevent intrusions in the first place with a daily audit. Threat Management looks at possible threats to your company or industry. ‘

Combing all three can have many rewards giving an overall view of your companies security posture. Take business lines as an example, let’s call them biz1 biz2 and biz3. Looking at biz1 and all the technology it utilizes, servers, firewall and routers and creating a profile for biz1 technology then running a vulnerability scan plus looking at the threats to the vulnerability we can actually derive mathematical scores and compare them to other business lines. This helps senior management understand the risks of the business lines and helps them understand where and when investments are needed.

Topic