Managing cybersecurity involves sifting through vast amounts of data. ULTRA RED continuously gathers comprehensive details about your digital assets, aggregating crucial information like vectors, technologies, ports, and metadata into intuitive charts. While our dashboards already simplify visualizing this information, the introduction of filterable widgets enables even greater precision, empowering you to create specialized dashboards tailored specifically to your needs.
This newsletter is the first in a series designed to demonstrate various practical use cases for leveraging ULTRA RED's Custom Dashboards. Keep an eye on your inbox for future installments, each offering helpful insights and guidance to optimize your daily activities and compliance efforts.
Use Case: Supporting ISO 27001 Compliance
Let’s look at how the new widgets can support ISO 27001 compliance — a well-known framework in cybersecurity. Here's how ULTRA RED's dashboards can help you address key requirements:
Access Control Policy ISO 27001 requires organizations to implement and enforce access control to maintain business continuity in case of a security incident. Using the Monitored Assets widget, you can filter to display only assigned assets with the Misconfiguration, Information Disclosure, and Directory Listing vector tags — giving you clear visibility into potential access control gaps. Want a more granular view? Use three instances of the same widget, each filtered by a different vector tag.
Malware Protection + Web Filtering To support ISO 27001’s malware protection requirement, filter the Verified Vectors widget by the Malware vector type. This lets you monitor assets for any detected malicious files — and also contributes to meeting Web Filtering expectations.
Secure Development Lifecycle ISO 27001 also mandates secure development practices. The Distribution of Asset Scores widget, filtered by the Development Environments category, allows you to track critical vulnerabilities in your dev environments.
Application Security Standards Another requirement is enforcing consistent security across applications. The upcoming Enrichments widget — filtered by asset category and enrichment type — will help identify potential gaps that could impact your compliance posture.
