Cyber Hygiene in the COVID-19 Era: Breach and Attack Emulation

BAE tools go well beyond the capabilities of BAS and allow organizations to conduct near-continuous penetration testing.

Boston, April 29, 2020 Penetration testing is a widely accepted industry practice to complement vulnerability scanning and evaluate the effectiveness of cyber defenses. But penetration testing is labor-intensive and dependent on highly qualified cyber professionals—and expensive. Fortunately, a new breed of tools—breach and attack emulation—is emerging that can automate penetration testing processes and increase testing cycles at significantly reduced cost.

This Impact Brief describes the differences between breach and attack simulation and BAE, and includes an example of how an organization is using a BAE product to lower its cyber risk. It is based on Aite Group’s telephone and in-person conversations with 15 security professionals, conducted from mid-December 2019 to mid-March 2020, as well as an extended interview with a cyber defense manager at a large financial services company that is using a new BAE tool to reduce the company’s overall cyber risk.

Clients of Aite Group’s Cybersecurity service can download this 10-page Impact Brief. To learn more about the topic covered in this Impact Brief, please contact us at [email protected].

This report mentions Pcysys.

Related Content

Get Summary Report

"*" indicates required fields

This field is for validation purposes and should be left unchanged.