SB Technology Corp.
As of January 14, 2025, our CSPM/ASM service, "Cloud Patrol," has added "priority" and "compliance objectives" to the audit report in the "Guideline Audit" function.
By clarifying the priority of tasks and the purpose of compliance, it becomes possible to start with tasks that are highly effective and have a low burden, contributing to efficient security improvements.
■ Criteria for "priority"
The priority is determined comprehensively based on the following:
(1) The extent to which compliance reduces the risk of incidents and mitigates their impact
(2) Level of compliance workload and ongoing operational burden
(3) Judgments based on our implementation and operation track record and actual cases
■ "Purpose of Compliance" Criteria
We categorized the audit items based on the six categories of NIST CSF 2.0 (identify, prevent, detect, respond, recover, and govern) and consolidated them into the following two categories, excluding "governance."
(1) Risk reduction: Identification and prevention
(2) Impact mitigation: detection, response, and recovery
▼Click here for details on "Cloud Patrol".
https://www.softbanktech.co.jp/service/list/cloudpatrol
