
Continuous Security Testing
Penetration testing has grown into a lucrative field for aficionados of the cyber world. Testers come in all shapes and sizes so there is no telling whether a given parties test findings and the subsequent remedials will enhance security such that another party could not find fault.
Most GRC obligations have a significant (human) testing component to them.
This lack of consistency and certainty has seen the rise of automated solutions led by a family Gartner call BAS (Breach Attack Simulation) which takes the primary known tools, techniques and tricks and applies them robotically to issue a score that then serves as a benchmark for improving against.
As the saying goes: ‘If you don’t measure it you can’t control it.’
WE LIKE:
Cymulate is a SaaS based breach-attack simulation (BAS) vendor who help organizations safeguard against potential internal and external threats to business-critical assets. Cymulate’s unique cyber simulation platform assesses the current cyber posture of a customers environment by exposing weaknesses and offering actionable insights. Cymulate help identify and resolve these gaps by producing a comprehensive report benchmarked against relevant industry frameworks for customers to action and therefore progressively strengthen their cybersecurity posture.