Prepare cybersecurity operations management
- All products are in heavy development with very high release rate
- All company relies on relationship with contractors with potential high turnover
These creates a very protean environment and an old school security audit would likely to be irrelevant by the time it's done.
We need an operational way to manage cybersecurity risks and cyberdefense. And more specifically we need:
- A overview of all our assets with their criticity
- A definition of measures to take to protect them
- A way to automatically follow their life cycle
- A way to follow the corrective actions status
- A reliable overview of the security state (KPI)
- An up-to-date action plan
@balessan I think we have an opportunity to reuse our skills on graphs... :)