ID.AM-03.125

Does your organization maintain documented baselines of expected network communication patterns and data flows for both wired and wireless networks?

Explanation

Network baselines document normal communication patterns and data flows, enabling the detection of anomalies that could indicate security incidents. These baselines should include information about expected traffic volumes, protocols, source/destination pairs, and timing patterns for both wired and wireless networks. Evidence could include network diagrams showing expected data flows, baseline documentation of normal network traffic patterns, outputs from network monitoring tools showing established baselines, or network traffic analysis reports that reference established baselines.

Implementation Example

Maintain baselines of communication and data flows within the organization's wired and wireless networks

ID: ID.AM-03.125

Context

Function
ID: IDENTIFY
Category
ID.AM: Asset Management
Sub-Category
Representations of the organization's authorized network communication and internal and external network data flows are maintained

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Signature
Neil Cameron
Founder, ResponseHub
Neil Cameron