Why monitoring the secure score should be part of your security management

This is blog 2 in a series of 4 that deals with security management

4
 min read |  
7/11/2022
 |  
Business critical applications

Setting MFA is one way to get to 10% of your overall secure score. What exactly does that secure score mean, why keeping it up is so important, and how to get it done? In this blog, you'll find how to get the other 90% done. One thing is certain: anyone running online environments, whether they are devices, systems, APIs or platforms, everyone feels the need to have their security in order. Read on quickly.

How how and why of the Secure Score

Microsoft describes it as a measuring tool for your organization to determine how your security management is doing and what actions you can still take to increase this score. Why is this so important and what business value is attached to it? Simple: you want to identify vulnerabilities in time, ward off threats, keep the impact of vulnerabilities as low as possible and limit future risks.  

  • Systems that are not up-to-date are riskier
  • Backing up is a given with Microsoft Defender for Cloud in Azure
  • You don't want a data breach and thus apply data encryption
  • You want to control access to systems as well as possible with associated permissions and auditability. Asset management is what we call that
  • Endpoints need to be protected. Especially the information wiped out between the API
  • Anyone seeking ISO certification must be compliant and in Cloud Defender there is a template for that to monitor whether you are and remain up-to-date

So what is a good secure score? We would argue that a secure score of 30-35% is low on average. However, 100% you're hardly going to see anywhere. That would mean your systems are no longer flexible and you don't want that. A market average which is considered good is a score above 70%. Be aware that once you've secured a good secure score with your organization, you want to keep it. So as more functionality is added from the application or from Microsoft, it is important to keep monitoring. After all, a lower percentage means more risk on the points mentioned above.  

Previous blogs you may find interesting:  

Security recommendations in the Microsoft Defender for Cloud

Have you taken a look inside your portal yet? You'll get tips on MFA (both at the organizational level and at the subscription level), management ports and much more. Not using Azure yet and not getting these recommendations but want to know more about it? Then check out Modern Service Management | Bizure or send us a message.  

An example? Consider Azure AD Privileged Identity Management (PIM) Through PIM, we can assign permissions to certain roles (e.g., contributer or admin). From again an auditable process, we can request access to systems, track who made what changes on production and track that later if needed. This is easily arranged through a workflow. You're going to read more about this compliancy in the fourth blog. So, stay tuned!  

Marco's tip: make your environments secure and do so in a uniform way that makes it understandable for both business and IT and allows actions to be taken immediately if the situation calls for it. The secure score can be a good guide in this so make use of it!

Proactive monitoring to mitigate security risks  

If you are an IT Manager, Security Officer or Developer, then the security score is familiar to you (if all goes well). The business increasingly sees the value of security issues because their environment is often public facing and therefore it is a must to ensure that end users' data is safe in the cloud and partners can collaborate as efficiently as possible on the platform with the right credentials. For example, if there are a lot of unknown requests per day on your site then you know there is a potential risk. With the proactive security monitoring we can find out exactly what the problem is.  

If there is a critical issue it will be communicated with suggested action and possibly direct execution. You can also set up direct alerting so that you are immediately aware of a vulnerability. Should a change affect end users, it is wise to weigh risk and impact.  

Bizure provides proactive monitoring on your IT landscape, subscriptions, platforms, API management and your cloud architecture.

Find Blog 1 from this security management series via The importance of MFA - why you really need to have it in place by 2022.

Download our cheat sheet BizDevOps

We combine data and foresight with intuition and lasting behavior change. How. We wrote out the first steps for you in our BizDevOps cheat sheet. Download it now for free and start your digital transformation today.

5
 min read |  
19/7/2024
Team huddle: A weekly moment for connection and effectiveness in your team
In the digital age where technology drives the way we work, collaboration is becoming increasingly challenging. Teams are scattered across different locations and working on a variety of projects, so connectedness can quickly be lost. How can we ensure that team members stay engaged despite this distance?
Business critical applications
3
 min read |  
19/7/2024
Back to the 80's! - Recap Azure & AI Lowlands
June 27 was the day: the Azure & AI Lowlands event! With the entire Cloud team we traveled to this event, completely in '80s style. Think neon colors, retro games, iconic 80s vehicles and of course a lot of tech talks on Azure and AI.
Our team members
4
 min read |  
5/7/2024
The Role of Agile Coach - In conversation with Gert-Jan
Meet Gert-Jan! Agile Coach at TeamValue. Scrum working is totally his thing. And he likes to help his colleagues with this. Curious about working at TeamValue? Then read on quickly.
More information about this blog? Get in touch with the author(s).
Marco van der Steijle
Sign up for the newsletter!
SIGN UP NOW
Background

Join our team!

TeamValue is a young and fast growing company with a solid foundation. We are looking for people who have IT skills and enjoy giving workshops. Searching together for the best solution for a customer. That is what we are all about!

Azure Solution Developer

A very dynamic role, in which more than just technical skills are required! You are that Fullstack Software Developer who knows how to build business-critical applications. All your solutions must be rolled out 100% automatically.

Full-time
Zwolle

Cloud Engineer

You are the Cloud Engineer who understands the old world, has a lot of experience in it and secretly wants nothing more than to enter the new world of Modern Service Management and the public cloud. Do you have scripting skills, do you stand for proactive management and are you 'on' when it comes to solving (im)possible problems? The team can't wait to meet you.

Full-time
Zwolle

Business Intelligence Consultant

You have guts! Because you dare to be critical towards our customers. You really help the client one step further. You think with us, ask questions and respond. Because TeamValue goes for the best result.

Full-time
Zwolle