Go to content
logoNanitor
ALL

Cybersecurity

Security Drift – How Do You Know?

Derek Melber

Derek Melber

Chief Strategist

19.01.24

4 min read

Introduction  

Drift Happens! No matter the size of the organization or security staff, nor the monitoring of changes to every device, drift is going to occur. Do you know when everyone on your team makes a change, installs software, or tweaks a service on every asset? What if someone installs 5 different software solutions on an asset… will you know the installation was performed? Will the software be updated, patched, and secured? What if the software has 10 level 9 CVEs? How long will it take to patch the server and the newly installed software?  

Monitoring and Prioritizing Security Drift  

Most organizations have a vulnerability management solution in place. What is often the case, however, is that the new CVEs are monitored, not the older CVEs.   

Most organizations have some mechanism to manage patches, for operating systems, services, and software. However, usually, the most recent patches are monitored, not older and legacy patches for software.   

What if there is a server, that is deemed essential, and has some older software installed to perform a key task? The software has not been installed in years, as newer software exists for the most recent tasks. In this case, does your vulnerability management and patch management solution flag this new software installation? Do your management solutions analyze the vulnerabilities and patch exploits along with the newer issues, then prioritize the outcome along with the other 4000 issues that are known?   

Nanitor Stands Alone for Issue Prioritization and Health Scoring!  

On more than one occasion customers using Nanitor have been notified that the overall health score of the organization has been reduced. In some cases, it was nearly 15%! A drop like this in a single day can make anyone perk up and feel concerned.   

However, what if your solution can not only indicate that there has been a security risk increase but clearly indicates what occurred on which asset(s), along with direct links to patch files and mediation steps?   

This is what Nanitor provides!   

In comparison to other well-known vulnerability and patch management solutions, Nanitor is finding more issues (Figure 1), highlighting the priority of these issues (Figure 2), and directing organizations to remediate issues that existing solutions are not even finding!   

Nanitor Health Score's by issue type

Figure 1. Issues and health scoring 

Nanitor vulnerabilities by issue priority

Figure 2. Priority is set and integrated for each issue type. 

Wouldn’t you want that level of security for your organization?  

Nanitor provides the following security assurances:  

  • Vulnerabilities   
  • Misconfigurations  
  • Patching  
  • Identity security  
  • Cloud security  
  • Software security  
  • External Attack Surface Security  

To get Nanitor to help secure your organization: