The main different between an IDS and IPS is that an IDS sends alerts when suspicious events are identified while an IPS reacts and prevents attacks in progress from reaching targeted systems and networks.| PurpleSec
A phishing campaign is comprised of 8 steps including sending a questionnaire, crafting email templates, defining the vishing and/or smishing scenario, getting stakeholder buy in, performing the test, reporting on findings, and conducting security awareness training.| PurpleSec
Social engineering relies on human behavior and the way humans think. It takes advantage of our tendencies in an attempt to get the target to make a decision they wouldn’t normally make| PurpleSec
Vulnerability scanning is a process of identifying and assessing security weaknesses in a computer system, network, or web application. Vulnerabilities can range from technical flaws in software, hardware or configuration issues to vulnerabilities in policies and procedures.| PurpleSec
There are 10 steps to building a cyber security program including conducting a security risk assessment, selecting a cyber security framework, developing a cyber security strategy, developing a risk management plan, creating security policies and controls, securing your network, data, and applications, testing your security posture and evaluating/improving program effectiveness.| PurpleSec
Continuous vulnerability management provides 24/7 monitoring of an IT environment and automation to reduce the burden on IT security teams which reduces mean time to resolution and improves return on security investment.| PurpleSec
You can implement social engineering awareness training by developing policies, defining resources and toolsets, creating phishing campaigns, reporting on findings, and following up with online or in-person training.| PurpleSec
Information and cybersecurity policies are the foundation of building any security program. Get a step ahead of your cybersecurity goals by stealing a copy of our security policies today!| PurpleSec
