«

»

Jan
28

Continuous Monitoring and the Cloud

From: BankInfoSecurity.com

DHS’s John Streufert Discusses Continuous Monitoring Evolution

By Eric Chabrow

As enterprises move more applications to the cloud, continuous monitoring will play a greater role in assuring the software is patched in a timely manner, says John Streufert, DHS director of federal network resilience.

“As we move toward more virtual environments, we will try to automate the patching, and have it go on seamlessly in the background,” Streufert says in an interview with Information Security Media Group. “We are seeing a trend … where those who run cloud-based environments are taking advantage of automated patching and provisioning of their various servers, desktops or session instances. Everything seems to be heading toward trying to get into the position to improve the mean time between patching, reducing that to the lowest possible amount.”

Streufert is arguably the federal government’s foremost practitioner in implementing continuous monitoring, having won accolades for deploying a successful continuous monitoring program at the State Department, a job that led to his current post at DHS, guiding other federal agencies in initiating continuous monitoring programs.

In the interview, Streufert discusses:

  • How continuous monitoring could move beyond compliance to address other needs;
  • The difference between continuous monitoring and constant monitoring;
  • How continuous monitoring will evolve as a vital information security tool over the next five years.

Read Complete Article and Listen to Interview

 

Leave a Reply

Please Answer: *