Society of AI

Dec 20, 2020

3 min read

Let’s know about Risk Management

An information security risk evaluation will always give you the accurate picture of the security risks that might compromise/hamper privacy, integrity and availability of an organization’s information resources.

Risk assessment can be carried out in 4 steps:

· Defining the requirements

· Identify risks

· Analyze risks

· List risk treatment options

RISK MANAGEMENT IS UNIQUE

There are a lots of existing cybersecurity protocols, frameworks, and checklists that are being recommended by other organizations. But these solutions are personalized to their organizations; which means that even if it is working for them, it doesn’t guarantee that it can protect any other organization from future cyberattacks. Their company’s cyber risk and susceptibilities may be entirely different from yours. The easy, traditional response of blindly following a checklist has proven inadequate in the growing landscape of cyber risks and threats today. To keep up with the times and counter the growing threat of cybercrime effectively, companies should accommodate the growing complexity of corporate networks by constantly assessing their cybersecurity posture.

WHY IS IT IMPORTANT?

Cybersecurity risk management plan is the first line of defense in recognizing and addressing potential threats and vulnerabilities. Investing in it and constantly working on improving it will not only protect an organization, but it will also boost profits, meet compliance standards, reduce business liability, and help you gain a competitive advantage.

Reducing Threat Privilege

Most attackers have the level of privilege of the logged in user or the privilege of the process running the application that was exploited. This means if you’re logged in with anadministrator privilege, the malware will have the same level of privileges if they exploit the system via you or a process that you’re running or the application that you’re running.

If you are logged in with restricted privileges, the malware is also restricted and the risk is less . Restricting privileges is a standard approach in Linux and UNIX type operating systems where the admin or root account is rarely used.

But this is not the case in Windows. Administrative privileges is the default. You need to change your account in Windows to be a standard user(preferred not to use or link a Microsoft account) and use an admin account just for when you need it. This has surprisingly little administrative burden as you will be prompted for the admin privileges if and when you need them, which is mostly when you’re installing applications.

By doing this its an easy win to lock down any attacker or attack, you will have to train yourself not to thoughtlessly enter the admin password when requested, rather question the reason of you being prompted for the admin username and password. If an attacker has reduced privileges, it forces the person to attempt to try to do privilege escalation techniques, which exploits aren’t always available or possible or written into the malware that is doing the attack, so it effectively reduces the attack surface.

If you liked the story and want to appreciate us you can clap as much as you can. Appreciate our work by your constructive comment and also you can connect to us on….

Youtube: https://www.youtube.com/channel/SocietyOFAI

LinkedIn : https://www.linkedin.com/company/society-of-ai

Facebook: https://www.facebook.com/societyofai/

Website : https://www.societyofai.in/