You can view your Cyber Risk Score every day – knowing its meaning is fundamental to your security posture.
OVERVIEW
Cybersecurity is about risk management, and risk management is about visibility and mitigation. Devastating cyberattacks are hitting companies around the globe every day, making total visibility of your digital infrastructure more important than ever. This is where we step in, providing 24/7 monitoring and a daily snapshot of your cybersecurity posture.
AgileBlue’s SOC-as-a-Service collects data from your entire portfolio: servers, endpoints, cloud platforms, applications, etc. When we have 100% visibility, we can apply our Cyber Risk Score algorithm to accurately predict your risk. The algorithm incorporates the following risk factors into a proprietary algorithm:
- Monitored Devices
- Cyber Best Practices
- Cases
With these risk factors, we’re able to accurately assess your risk. The score ranges from 100 (low risk) to 1000 (high risk) and is calculated daily at Midnight Eastern Time. The calculation includes the previous day’s data along with any outstanding cases regardless of the timestamp. In addition to the daily risk score, clients can now perform real-time updates. These are temporary changes, allowing a user to observe the effects of changes to each risk factor. The subsequent sections describe in detail the three risk factors and how to observe the real-time updates.
MONITORED DEVICES
The monitored devices risk factor is calculated based on the fraction of devices that AgileBlue is monitoring. It is dependent on the total number of servers and workstations in your environment and how many of those are being monitored by the agent. Agent coverage and risk are inversely proportional. The more of your devices running the agent, the lower your risk score. Real-time updates can be observed by modifying the total number of servers and workstations. Once you’ve determined the actual values of your devices, you’ll have to click Submit to save and apply the change to your nightly score.
CYBERSECURITY BEST PRACTICES
The cyber best practices risk factor is based on a list of industry best practices. Adhering to as many of these as possible (checking a box) will reduce your risk of a cyberattack. Real-time updates can be made by checking a best practice box and observing the After Submitted Changes risk score on the right side of the page. To officially update your score for the nightly calculation, you must click Submit.
CASES
The third risk factor is cases, which includes the following case status: open, assigned, and closed cases with a malicious tag. Real-time updates can be made by checking the box next to the case. A checkbox simulates the effect of a case under investigation being confirmed as legitimate. If you can confirm the legitimacy of the case, please reach out to one of our analysts to officially close the case. Even one case under investigation will have a significant impact on your risk score. Because of this, we highly recommend these cases be addressed ASAP as an increase in duration could be catastrophic.
