The document discusses the importance of implementing a system hardening program, highlighting its priority in server protection strategies. It cites Gartner and Securosis on configuration hardening's effectiveness and notes that a 2013 survey indicated less than half of organizations manage configurations for security purposes. The content underscores the need for a continual hardening process to enhance system trustworthiness.

1. HOW TO BUILD, IMPLEMENT AND MANAGE
A SYSTEM HARDENING PROGRAM

11. 1
Gartner
says SCM
is the #1 priority
in creating a
server protection
strategy

12. Securosis says
configuration
hardening is
the 2nd most
effective
control at
securing
sensitive
data
2

13. 451 Group
survey in
2013
finds
less
than
half
have
deployed

34. “The management and control of
configurations for an information
system with the goal of
enabling security &
managing risk”
SCM according to NIST:

35. Continually hardened
IT systems that are
less vulnerable and
more trustworthy

36. www.tripwire.com/scm
Get Your
Free Copy:
www.tripwire.com/scm

37. www.tripwire.com/scm
Get Your
Free Copy:
www.tripwire.com/scm