<p>Cybersecurity complexity is continuously compounded with the adoption of new security controls, point products and platforms — an issue that ironically creates more vulnerabilities than it solves.</p>
<div class=”ad-wrapper ad-embedded”>
<div id=”halfpage” class=”ad ad-hp”>
<script>GPT.display(‘halfpage’)</script>
</div>
<div id=”mu-1″ class=”ad ad-mu”>
<script>GPT.display(‘mu-1’)</script>
</div>
</div>
<p>In research from Enterprise Strategy Group, now part of Omdia, 37% of respondents <a href=”https://research.esg-global.com/reportaction/515201807/Marketing”>said</a> their organization uses more than 26 security products, with 10% of those saying they use more than 51. Managing this portfolio of products and ensuring the attack surface is adequately protected is becoming exceedingly difficult for security teams.</p>
<p>CISOs should consider security control rationalization to reduce the number of tools in use while ensuring systems remain protected. Let’s examine why security control rationalization is beneficial and how CISOs and security teams should evaluate and optimize their tools.</p>
<section class=”section main-article-chapter” data-menu-title=”How control rationalization can improve security and lower budgets”>
<h2 class=”section-title”><i class=”icon” data-icon=”1″></i>How control rationalization can improve security and lower budgets</h2>
<p>Organizations historically adopted new security tools when necessary to both mitigate new threats and meet business demands. This approach, however, leads to <a href=”https://www.techtarget.com/searchitoperations/definition/What-is-tool-sprawl-Explaining-how-IT-teams-can-avoid-it”>tool sprawl</a> — the accumulation of multiple tools that often only fulfill a single purpose or overlap in functionality — which creates a complex toolbox that is difficult to manage and use.</p>
<p>This proliferation of tools can result in the following:</p>
<ul class=”default-list”>
<li><b>Coverage gaps.</b> Too many tools make it more difficult to efficiently monitor attack surfaces and secure data.</li>
<li><b>Patching issues.</b> Updating and patching every tool can result in excessive downtime and prevent security teams from focusing on important tasks.</li>
<l
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: