Veriti is thrilled to be recognized as a Sample Vendor in the Automated Security Control Assessment (ASCA) category in the Gartner® Hype Cycle™ for Security Operations, 2023.
Gartner describes ASCA as “ASCA processes and technologies focus on analysis and remediation of misconfigurations in security controls, which improves enterprise security posture. ASCA can be a stand-alone tool or a capability of other security products, such as firewalls, identity threat detection and response, network security policy management, and cloud infrastructure entitlement management.”, which leads to an improved enterprise security posture. According to Gartner: “Automated security control assessment (ASCA) technologies reduce an organization’s attack surface caused by security configuration drift, poor defaults, excessive tuning to reduce false positive rates, and high administration staff turnover. ASCA improves the security posture by verifying the proper, consistent configuration of security controls, rather than simply verifying the existence of controls.”
We believe Veriti’s consolidated security platform aligns perfectly with this vision, providing a comprehensive and efficient solution to these pressing security concerns. Our platform allows security teams to proactively identify postural gaps, misconfigurations, and false positive events across every integrated solution. Using threat prevention configuration as a foundation for automated analysis, Veriti swiftly remediates these gaps before they negatively impact application or network performance. This proactive approach significantly reduces an organization’s attack surface, fostering a more robust security environment.
In addition to identifying the potential impact and drivers of ASCA, Gartner’s report lists various obstacles the technology might face. These include “The slow pace of remediation, paired with continuous assessments, may cause findings to pile up without proper automation and a triage process that considers business context.”, “Lack of mature processes to optimize security controls configurations end to end,” and “Budget increases to invest in people, technologies and, possibly, managed services needed to respond to an accelerated list of configuration issues discovered by ASCA tools.”. Addressing these concerns, Veriti offers efficient, real-time remediation solutions that prevent findings from piling up. Unlike traditional approaches relying on manual configuration reviews, siloed tool-centric strategies, or sporadic penetration tests, Veriti implements a holistic, automated strategy powered by advanced machine learning algorithms that bolster the organization’s risk mitigation strategy without necessitating significant budget expansions.
Gartner, Hype Cycle for Security Operations, 2023, Jonathan Nunez, Andrew Davies, 20 July 2023.
Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.