Best Practice Assessment Executive Summary Key Recommendations

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
L4 Transporter

Best Practice Assessment

Executive Summary Key Recommendations

 

 

The BPA executive summary provides key recommendation based on CISSP security control. The current version of executive summary focuses on three security controls as:

  • Preventative
  • Performance
  • Detective


vsharma1_14-1664217498740.png

 

 

 

 

 

 

 

 

 

 

 

 

The “View” button redirect to the Mapping definition page with the filtered view that shows BPA Checks listed under Capability summary as “Preventative”.

Calculation for Preventative Recommendation

This section shows how we get the Preventative percentage numbers and the description per score range. In Best Practice Assessment summary page if the passing percentage of Preventative is less than 60% under Capability Summary section than Key Recommendation will provide recommendation against “Preventative” security control.

 

vsharma1_16-1664217641199.png

 

 

 

 

 

 

 

 

 

 

 

 

 

 

Below table shows different score ranges and their text.

 

Passing % Range

Color

Potential Impact

Recommendation

Action Required

0 - 39

Red

No single layer of security will ensure that your business has the appropriate level of security to identify and remediate potential threats. To eliminate as many vulnerabilities as possible and to keep your business systems and network optimally secure, you need to deploy preventative security controls.

Our recommendation is to identify list of failed BPA checks and the ones that are not configured to improve your Preventative security controls

Identify and review individual BPA checks, and adhere to best practices to build robust security posture.

40 - 79

 

Yellow

Ensure that your business has the appropriate level of security to identify and remediate potential threats. Eliminate vulnerabilities to keep your business systems and network optimally secure, and use preventative security controls.

Our recommendation is to identify gaps and remediate failed BPA checks to improve your Preventative security controls.

Ensure efficient and secure use of Best Practices, it is recommended to review each Best Practice checks to resolve misconfigurations.

80 - 99

Green

Always adhere to Preventative security controls to reduce the impact of a successful threat event.

Our recommendation is to identify a list of BPA Checks to take action against and remediate those failed BPA checks to  achieve greater  Preventative security controls.

Review BPA checks that are not following best practices and plan to remediate if there are any misconfigurations.

100

Dark Green

Your company is following best practices for standards, encryption, and firewalls.

Your company is adhering to best practices for a strong security posture by using preventative countermeasures.

No action needed.

 

Note: Above logic and description in the table will remain same for performance and detective security controls. 

 

 

 

 

 

Contact BPA team at bpa@paloaltonetworks.com

Visit us at www.paloaltonetworks.com/

  • 1425 Views
  • 0 comments
  • 1 Likes
Register or Sign-in