DE.CM-05

Does your organization have controls in place to detect unauthorized mobile code execution within your environment?

Explanation

Mobile code (JavaScript, ActiveX, Flash, etc.) can introduce security risks when executed without proper validation or authorization. Detection mechanisms should identify when unauthorized mobile code attempts to run on endpoints, servers, or within applications. This could include web application firewalls, endpoint protection solutions, or application whitelisting tools that can identify and block unauthorized code execution. Evidence could include logs from security tools showing detection of unauthorized mobile code execution attempts, configuration documentation for mobile code restrictions, or reports from security monitoring systems that specifically track mobile code execution.

Context

Function
DE: DETECT
Category
DE.CM: Continuous Monitoring
Sub-Category
Unauthorized mobile code is detected

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron