A penetration test is resource-intensive and expensive, but characterizes your environment at a single point in time. Given the increasing complexity of technology infrastructure and the increasing sophistication of adversaries, a new approach to security testing is required. That approach is Dynamic Security Assessment.
The Endpoint Advanced Protection (EAP) concept entails integration of many capabilities previously only offered separately, including endpoint hygiene to reduce attack surface, prevention of advanced attacks including memory attacks and malware-less approaches, and much more granular collection and analysis of endpoint telemetry (‘EDR’ technology).
This paper maps out an operational process to more effectively handle hostile campaigns. That requires leveraging security data through better analytics, magnifying the impact of the people we have by structuring and streamlining processes, and automating threat remediation wherever possible.