{"id":655,"date":"2019-10-19T13:30:51","date_gmt":"2019-10-19T13:30:51","guid":{"rendered":"https:\/\/securityeverafter.com\/?p=655"},"modified":"2023-02-01T09:49:36","modified_gmt":"2023-02-01T14:49:36","slug":"what-assumptions-are-you-making","status":"publish","type":"post","link":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/","title":{"rendered":"What Assumptions Are You Making?"},"content":{"rendered":"<h1><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-1672\" style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif; font-size: 16px;\" title=\"Assumption made of safe driving\" src=\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?resize=347%2C231&#038;ssl=1\" alt=\"Assumption made of safe driving\" width=\"347\" height=\"231\" srcset=\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?resize=1024%2C683&amp;ssl=1 1024w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?resize=300%2C200&amp;ssl=1 300w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?resize=768%2C512&amp;ssl=1 768w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?resize=1536%2C1024&amp;ssl=1 1536w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?w=2048&amp;ssl=1 2048w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?w=1280&amp;ssl=1 1280w, https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?w=1920&amp;ssl=1 1920w\" sizes=\"(max-width: 347px) 100vw, 347px\" \/><\/h1>\r\n<h1>What Assumptions Are You Making?<\/h1>\r\n\r\n<p><span style=\"font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, Oxygen-Sans, Ubuntu, Cantarell, 'Helvetica Neue', sans-serif;\">I used to make a lot of assumptions. I assumed I would get an alert if my security agents were not working correctly. Since no one said there was a problem with my security agents, I assumed everything would be okay. These are just a few assumptions I make daily as a cybersecurity practitioner about the security agents that protect my organization. While it is preferable to think everything is okay, it is much better to validate that assumption regularly.\u00a0<\/span><\/p>\r\n\r\n\r\n\r\n<p>I have been fortunate to work in cybersecurity for many years and at several diverse types of organizations. During that time, I always found it helpful to check on the status of the security agents periodically. I have found with scheduling recurring calendar reminders; I can better validate the assumption that the security agents are working as intended. Specific areas of focus include confirming the security agent is installed correctly and performing the actions specified in the policy.\u00a0<\/p>\r\n\r\n\r\n\r\n<p>Central monitoring consoles are a great place to start for security agents that have not communicated back to the console within an acceptable time. The output from the console can be compared to the\u00a0<a href=\"https:\/\/www.cisecurity.org\/controls\/inventory-and-control-of-hardware-assets\/\">Inventory and Control of Hardware Assets<\/a> to ensure that every system has a security agent installed. Whether an automated or manual task, this practical step can help to validate your assumption.\u00a0<\/p>\r\n\r\n\r\n\r\n<h2>What assumptions can you validate today?<\/h2>\r\n<p>Think about your assumptions, and take action right away! By being intentional about validating the health of your security agents, you can do a great deal to validate the assumptions you are making.<\/p>\r\n\r\n\r\n\r\n<p>One of my favorite questions is &#8220;How long can you stand to not know&#8221;. In this case, how long can you stand to not know when your security agents are not working as expected? If you get stuck, check out my earlier article and video from the Center for Internet Security on the <a href=\"https:\/\/securityeverafter.com\/cis-controls-implementation-guide-for-small-and-medium-sized-enterprises\/\">Implementation Guide for Small and Medium-Sized Businesses<\/a>.\u00a0<\/p>\r\n<p>I would be failing you if I did not ask &#8211; What Assumptions Are You Making in your cybersecurity program? Let us know of your success in the comments section below!\u00a0<\/p>\r\n<p>Want to get more cybersecurity information in your inbox? I would love to <a href=\"https:\/\/www.securityeverafter.com\/community\">invite you to our email list<\/a>, so you do not miss out on weekly events!\u00a0<\/p>\r\n","protected":false},"excerpt":{"rendered":"<p>What Assumptions Are You Making? I used to make a lot of assumptions. I assumed I would get an alert if my security agents were not working correctly. Since no one said there was a problem with my security agents, I assumed everything would be okay. These are just a few assumptions I make daily [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":1672,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":true,"jetpack_social_options":{"image_generator_settings":{"template":"highway","enabled":false},"version":2}},"categories":[23,30,12,10],"tags":[],"jetpack_publicize_connections":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.8 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>What Assumptions Are You Making? - Security Ever After - vCISO<\/title>\n<meta name=\"description\" content=\"What assumptions are you making in your cybersecurity program? What systems can you implement to be effective?\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"What Assumptions Are You Making? - Security Ever After - vCISO\" \/>\n<meta property=\"og:description\" content=\"What assumptions are you making in your cybersecurity program? What systems can you implement to be effective?\" \/>\n<meta property=\"og:url\" content=\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\" \/>\n<meta property=\"og:site_name\" content=\"Security Ever After - vCISO\" \/>\n<meta property=\"article:published_time\" content=\"2019-10-19T13:30:51+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2023-02-01T14:49:36+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"2048\" \/>\n\t<meta property=\"og:image:height\" content=\"1365\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Russell\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@russelleubanks\" \/>\n<meta name=\"twitter:site\" content=\"@russelleubanks\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Russell\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\"},\"author\":{\"name\":\"Russell\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3\"},\"headline\":\"What Assumptions Are You Making?\",\"datePublished\":\"2019-10-19T13:30:51+00:00\",\"dateModified\":\"2023-02-01T14:49:36+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\"},\"wordCount\":391,\"commentCount\":4,\"publisher\":{\"@id\":\"https:\/\/securityeverafter.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1\",\"articleSection\":[\"Career\",\"Critical Security Controls\",\"cyber security\",\"Security\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\",\"url\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\",\"name\":\"What Assumptions Are You Making? - Security Ever After - vCISO\",\"isPartOf\":{\"@id\":\"https:\/\/securityeverafter.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1\",\"datePublished\":\"2019-10-19T13:30:51+00:00\",\"dateModified\":\"2023-02-01T14:49:36+00:00\",\"description\":\"What assumptions are you making in your cybersecurity program? What systems can you implement to be effective?\",\"breadcrumb\":{\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage\",\"url\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1\",\"width\":2048,\"height\":1365},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/securityeverafter.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"What Assumptions Are You Making?\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/securityeverafter.com\/#website\",\"url\":\"https:\/\/securityeverafter.com\/\",\"name\":\"Security Ever After - CISO\",\"description\":\"vCISO\",\"publisher\":{\"@id\":\"https:\/\/securityeverafter.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/securityeverafter.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/securityeverafter.com\/#organization\",\"name\":\"Security Ever After\",\"url\":\"https:\/\/securityeverafter.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1\",\"width\":1169,\"height\":826,\"caption\":\"Security Ever After\"},\"image\":{\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/x.com\/russelleubanks\",\"https:\/\/www.linkedin.com\/in\/russelleubanks\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3\",\"name\":\"Russell\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/securityeverafter.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg\",\"caption\":\"Russell\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"What Assumptions Are You Making? - Security Ever After - vCISO","description":"What assumptions are you making in your cybersecurity program? What systems can you implement to be effective?","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/","og_locale":"en_US","og_type":"article","og_title":"What Assumptions Are You Making? - Security Ever After - vCISO","og_description":"What assumptions are you making in your cybersecurity program? What systems can you implement to be effective?","og_url":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/","og_site_name":"Security Ever After - vCISO","article_published_time":"2019-10-19T13:30:51+00:00","article_modified_time":"2023-02-01T14:49:36+00:00","og_image":[{"width":2048,"height":1365,"url":"https:\/\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg","type":"image\/jpeg"}],"author":"Russell","twitter_card":"summary_large_image","twitter_creator":"@russelleubanks","twitter_site":"@russelleubanks","twitter_misc":{"Written by":"Russell","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#article","isPartOf":{"@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/"},"author":{"name":"Russell","@id":"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3"},"headline":"What Assumptions Are You Making?","datePublished":"2019-10-19T13:30:51+00:00","dateModified":"2023-02-01T14:49:36+00:00","mainEntityOfPage":{"@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/"},"wordCount":391,"commentCount":4,"publisher":{"@id":"https:\/\/securityeverafter.com\/#organization"},"image":{"@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1","articleSection":["Career","Critical Security Controls","cyber security","Security"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/","url":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/","name":"What Assumptions Are You Making? - Security Ever After - vCISO","isPartOf":{"@id":"https:\/\/securityeverafter.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage"},"image":{"@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage"},"thumbnailUrl":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1","datePublished":"2019-10-19T13:30:51+00:00","dateModified":"2023-02-01T14:49:36+00:00","description":"What assumptions are you making in your cybersecurity program? What systems can you implement to be effective?","breadcrumb":{"@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#primaryimage","url":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1","contentUrl":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1","width":2048,"height":1365},{"@type":"BreadcrumbList","@id":"https:\/\/securityeverafter.com\/what-assumptions-are-you-making\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/securityeverafter.com\/"},{"@type":"ListItem","position":2,"name":"What Assumptions Are You Making?"}]},{"@type":"WebSite","@id":"https:\/\/securityeverafter.com\/#website","url":"https:\/\/securityeverafter.com\/","name":"Security Ever After - CISO","description":"vCISO","publisher":{"@id":"https:\/\/securityeverafter.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/securityeverafter.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/securityeverafter.com\/#organization","name":"Security Ever After","url":"https:\/\/securityeverafter.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/","url":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1","contentUrl":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2020\/04\/SECURITY-e1589664916497.jpg?fit=1169%2C826&ssl=1","width":1169,"height":826,"caption":"Security Ever After"},"image":{"@id":"https:\/\/securityeverafter.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/russelleubanks","https:\/\/www.linkedin.com\/in\/russelleubanks\/"]},{"@type":"Person","@id":"https:\/\/securityeverafter.com\/#\/schema\/person\/38dd34bdece8068be18430e4c96ce5f3","name":"Russell","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/securityeverafter.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8567bffe1f64223494326650c53f921b?s=96&r=pg","caption":"Russell"}}]}},"jetpack_featured_media_url":"https:\/\/i0.wp.com\/securityeverafter.com\/wp-content\/uploads\/2019\/10\/Visibility.jpg?fit=2048%2C1365&ssl=1","jetpack_sharing_enabled":true,"jetpack-related-posts":[],"_links":{"self":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts\/655"}],"collection":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/comments?post=655"}],"version-history":[{"count":6,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts\/655\/revisions"}],"predecessor-version":[{"id":1688,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/posts\/655\/revisions\/1688"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/media\/1672"}],"wp:attachment":[{"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/media?parent=655"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/categories?post=655"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/securityeverafter.com\/wp-json\/wp\/v2\/tags?post=655"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}