The 2112 Group Security Scope

Welcome to the 2112 Security Scope, an exclusive tool for helping you understand your managed security services capabilities and performance relative to your peers and the channel at large.

By collecting answers to a few questions about your company and its approach to information security, the 2112 Security Scope diagnostic will generate a comprehensive report on how your company compares to others of comparable size and scope in the five functional areas of the NIST Cybersecurity Framework Core. All information provided is confidential, and you can evaluate your services practice through the 2112 Security Scope tool as often as you like.

The 2112 Security Scope is supported by The 2112 Group and Ingram Micro. We’re committed to helping businesses like yours build efficient, effective, and profitable managed security services practices.

Now let’s get started and create your profile.

Question 1. If you have a Security Scope referral code, please enter it now

Question 2. What is your Ingram Micro Account number (if applicable)?

Question 3. In which city is your company's primary address?

Question 4. Which title best matches your job, position, or responsibility?

CEO/President

CFO/COO/CIO/CXO

Owner/operator

Vice President

Director

Other

Question 5. What was your companys gross revenue for calendar-year 2019?

Less than $1 million

$1 million to $5 million

More than $5 million

Question 6. How many full-time salespeople does your company employ?

Question 7. How many full-time technical security professionals does your company employ?

Continue

Question 8. Which of the following security products does your company sell? (Choose all that apply)

Anti-malware gateways

Endpoint security

Firewalls

Intrusion detection / prevention systems (IDS/IPS)

Network security

Remote access tools

Security appliances

UTM

Wireless security

Access control

Biometrics

Network access control (NAC)

Password management

Single sign-on

Two-factor/ multi-factor authentication, smart cards, tokens

Anti-adware/spyware

Anti-spam

Anti-virus

Anti-phishing / security awareness

Email content management/filtering

Email identity management

Messaging security

Cloud access security brokers (CASB)

Data backup and recovery

Configuration management

Asset inventory management

Application security

Data loss prevention (DLP)

Database security

Digital rights management (DRM)

Encryption/data security

Web content management/filtering/behavior blocking

Website/web server security

Physical security

None of the above

Question 9. Which of the following professional security services does your company provide? (Choose all that apply)

Security assessments

Vulnerability scanning

Threat and vulnerability management

Penetration testing

Security system architecture and implementation

Security awareness testing and training

Identity and access management services

Incident response

Risk assessments

Auditing and compliance management

Security program strategy

Policy management and enforcement

Managed security services

None of the above

Question 10. What percentage of your company's 2019 gross revenue came from security products or services?

0%

1-5%

6-10%

11-15%

16-20%

21-25%

26-30%

31-35%

36-40%

41-45%

46-50%

51-60%

61-70%

71-80%

81-90%

91-99%

100%

Question 11. What percentage of annual revenue is being reinvested to build out your companys security capabilities and capacity?

0%

1-5%

6-10%

11-15%

16-20%

21-25%

26-30%

31-35%

36-40%

41-45%

46-50%

51-60%

61-70%

71-80%

81-90%

91-99%

100%

Question 12. What security certifications do personnel in your organization currently hold? (Select all that apply)

CISSP

SSCP

CISM

CISA

CRISC

GSEC

GPEN

CEH

ECSA

Security+

Continue

Function One: Identify

Assessing and managing risk lies at the heart of any effective information security program. Before you can determine what controls to implement, you must understand the real-world risk profiles and tolerances of the clients you protect. The Identify function helps you better understand and manage cybersecurity risks to systems, people, assets, data, and capabilities.

On a scale of zero to 10 with 10 being best, rate your organization’s performance on the following risk and threat identification tasks.

Question 13. Maintain a comprehensive inventory of customers' devices and systems with detailed asset information such as IP address, permissions, storage capacity, device type, etc. Use automated device discovery tools to track added or removed devices.

Question 14. Maintain a comprehensive inventory of customers' software assets with detailed information such as version, patch status, license status, permissions, etc.

Question 15. Develop risk and threat data for each client based on industry-specific and company-level data from breaches, incidents, threat intelligence and security controls.

Question 16. Create policies and procedures for information security. Get clients to understand, own and manage business risk and business impact associated with information security. Embed security and risk considerations into client processes and decision making for all technology and business initiatives.

Question 17. Map the client's organizational communication and data flows. Formally classify customer data and systems by sensitivity and criticality.

Question 18. Conduct regular penetration tests. Ensure only test user and system accounts are used. Deactivate test accounts after each test session.

Continue

Function Two: Protect

High-profile security breaches underscore the importance of mastering the elements of the Protect function, which outlines appropriate safeguards to ensure delivery of critical infrastructure services and supports the your ability to limit the impact of a cybersecurity event.

On a scale of zero to 10 with 10 being best, rate your organization’s performance on the following data and systems protection tasks.

Question 19. Automate patching and updating for all customer systems and applications.

Question 20. Install and activate software and hardware firewalls on all business networks. Segment customer networks into trust zones for more granular access control. Enable only necessary ports, protocols and services on customers' systems. Employ application whitelisting. Perform regular, automated port scans on key systems.

Question 21. Disable auto-run content for new devices and removable media. Limit permissions for use of external storage devices. Disable auto-download of attachments and auto retrieval of messages.

Question 22. Enable wireless access only where needed. Turn off wireless network ID broadcast except where required. Disable unnecessary wireless peer-to-peer and peripheral connectivity. Secure customers' wireless networks with authentication protocols such as EAP/TLS, with strong AES encryption and a minimum of WPA2-level protection.

Question 23. Encrypt data in motion and facilitate secure connections for sensitive communications. Limit user permission to copy customer data onto portable devices. Log and alert on suspicious traffic patterns and block unauthorized attempts to remove data.

Question 24. Limit administrator privileges to trained and authorized users in system-administrator roles. Prohibit the use of administrator credentials for routine, non-administration tasks. Prohibit sharing of administrator credentials across multiple systems. Use automated privileged ID and access management (PIM/PAM) tools to audit and manage super-user accounts.

Question 25. Require strong passwords on client systems. Lock accounts after a set number of failed login attempts. Protect user systems with screen locks and automatically lock users out after a defined period of inactivity. Protect customers' passwords with strong, irreversible, one-way hash.

Question 26. Assign account expiration dates where applicable and deactivate invalid accounts. Automatically lock accounts when abnormal activities are detected and automatically disable accounts on termination of clients employees.

Question 27. Require multi-factor authentication for remote logins to customer networks and cloud services with critical data stores. Require VPN connections when strong encryption is not supported.

Question 28. Deliver targeted security awareness using online training resources where appropriate. Repeat employee security-awareness communications in a variety of forms (e-mail, video, interactive web apps, etc.) to improve content retention.

Question 29. Ensure decommissioned and end-of-life IT assets with storage media are sanitized and disposed of per NIST SP 800-88 REV1 or equivalent.

Continue

Function Three: Detect

The Detect function guides your efforts to develop the policies and procedures you need to identify the occurrence of a cybersecurity event. Security data analysis and threat detection are key to catching system compromises early and mitigating the effects of an intrusion.

On a scale of zero to 10 with 10 being best, rate your organization’s performance on the following threat detection tasks.

Question 30. Install antivirus and anti-spyware tools and automate signature updates. Ensure malware detection activity is collected in a centralized logging server. Configure AV tools to automatically scan removable media

Question 31. Use automated systems to detect and/or prevent network intrusions (IDS/IPS). Analyze network traffic for unusual behavior, detect system compromise and thwart attacks.

Question 32. Maintain and monitor logs for unusual behavior and indications of compromise.

Question 33. Use a Security Information Event Management (SIEM) platform to collect and analyze traffic data in support of security operations and incident response.

Question 34. Deploy web and email content filtering. Ensure all email attachments are scanned, block any suspicious files, and disallow executables.

Question 35. Enable host-based anti-exploitation features to monitor, log and disable processes related to common memory-exploitation techniques such as buffer-overflow attacks.

Question 36. Run weekly automated vulnerability scans. Produce a list of prioritized vulnerabilities for each client system. Differentiate between code and configuration-based vulnerabilities. Correlate event logs with scan results.

Continue

Function Four: Respond

Well-rounded incident-response processes can minimize operational disruptions, shorten recovery, and reduce total cost in the wake of suffering a major breach. The Respond function guides the development and implementation of activities to take when a cybersecurity incident is detected.

On a scale of zero to 10 with 10 being best, rate your organization’s performance on the following incident response tasks.

Question 37. Define incident response team job titles, management roles and individual responsibilities.

Question 38. Follow high-level frameworks to establish procedures for incident response, support communication and ticketing systems. Set standards for reporting and assigning responsibility for legal or regulatory notification.

Question 39. During an event, perform prescribed activities per the IR plan to prevent expansion of the incident and mitigate its effects.

Question 40. Track activities taken to mitigate incidents. Analyze incident response results and use them to update and improve response strategies.

Question 41. Conduct routine risk- and threat-review sessions for incident-response personnel. Perform table-top IR exercises quarterly and full IR tests annually. Revise response plans based on new findings.

Continue

Function Five: Recover

In the wake of an attack, a reliable, security-focused backup and recovery process is required to repair damage and return the client’s business to a stable, working state. The Recover function deals with the development and maintenance of plans for resilience and procedures to restore data and services impaired by an incident.

On a scale of zero to 10 with 10 being best, rate your organization’s performance on the following attack and data loss recovery tasks.

Question 42. Regularly back up client systems (OS, system images, etc.). Routinely test data backup and recovery processes. Scan backups for viruses and malware.

Question 43. Ensure data recovery practices are coordinated and consistent with client's organizational requirements.

Question 44. Maintain and execute recovery processes and procedures to ensure timely restoration of systems and data impacted by security incidents.

Question 45. Communicate recovery activities to internal and external stakeholders and executive and management teams.

Question 46. Regularly update recovery policies and processes to meet clients evolving business requirements. Incorporate lessons learned from incidents and responses into BCDR policy updates.

Continue

We're almost done. We just need some contact information, in order to deliver your customized 2112 Security Scope report.

Enter your name and e-mail address below to receive your security practice assessment. You can use the 2112 Security Scope as often as you like to track your progress as your practice matures.

The 2112 Group is committed to your privacy and does not share or sell your contact information to third parties. For more information about how we use and safeguard your data, please see our privacy and data protection policy.

Question 47. What is your name?

Question 48. What is the name of your company?

Question 49. What is your email address?

Submit

Print

2112 services help technology vendors maximize the potential value of their channel programs. These services deliver on specific strategic needs, regardless of size, geographic location, or vertical.

Optimize Your Success

2112 intelligence enables fact-based decision-making by providing market-trend data that can be converted into practice.

Convert Insight To Action

2112 products enable clients to initiate strategic plans and engage in repeatable processes for achieving goals and accelerating short- and long-term value.

Improve Your Performance

2112 Quarterly Reports, Custom Research and other Strategic Content, including various White Papers and eBooks, available for purchase or complimentary download.

Explore Our Collection

Many of the blogs we write are sparked by discussions we have with our clients, partners, colleagues and friends. They offer best practices and strategic guidance from our perspective - while representing the voices of vendors and solution providers.

Scroll Through Our Blog

Podcast: The Future of Distribution

Measure and Report What Matters to Management

Podcast: Smart IoT Manufacturing

Channel Chiefs Welcome the Return of the VAR

Podcast: Monetizing Every Seat With Services

That three-step process is more than a tagline: it's how we approach each client engagement. Our goal is to deliver outcomes for vendors and partners through our portfolio of products and services. Every time.

Find Out More

About 2112

News & Events

Follow Us

2112 services help technology vendors maximize the potential value of their channel programs. These services deliver on specific strategic needs, regardless of size, geographic location, or vertical. Optimize Your Success

2112 intelligence enables fact-based decision-making by providing market-trend data that can be converted into practice. Convert Insight To Action

2112 products enable clients to initiate strategic plans and engage in repeatable processes for achieving goals and accelerating short- and long-term value. Improve Your Performance

2112 Quarterly Reports, Custom Research and other Strategic Content, including various White Papers and eBooks, available for purchase or complimentary download. Explore Our Collection

Many of the blogs we write are sparked by discussions we have with our clients, partners, colleagues and friends. They offer best practices and strategic guidance from our perspective - while representing the voices of vendors and solution providers. Scroll Through Our Blog

Podcast: The Future of Distribution

Measure and Report What Matters to Management

Podcast: Smart IoT Manufacturing

Channel Chiefs Welcome the Return of the VAR

Podcast: Monetizing Every Seat With Services

That three-step process is more than a tagline: it's how we approach each client engagement. Our goal is to deliver outcomes for vendors and partners through our portfolio of products and services. Every time. Find Out More

2112 services help technology vendors maximize the potential value of their channel programs. These services deliver on specific strategic needs, regardless of size, geographic location, or vertical.

Optimize Your Success

2112 intelligence enables fact-based decision-making by providing market-trend data that can be converted into practice.

Convert Insight To Action

2112 products enable clients to initiate strategic plans and engage in repeatable processes for achieving goals and accelerating short- and long-term value.

Improve Your Performance

2112 Quarterly Reports, Custom Research and other Strategic Content, including various White Papers and eBooks, available for purchase or complimentary download.

Explore Our Collection

Many of the blogs we write are sparked by discussions we have with our clients, partners, colleagues and friends. They offer best practices and strategic guidance from our perspective - while representing the voices of vendors and solution providers.

Scroll Through Our Blog

That three-step process is more than a tagline: it's how we approach each client engagement. Our goal is to deliver outcomes for vendors and partners through our portfolio of products and services. Every time.

Find Out More