Security Lifecycle Review (SLR)—What’s in the Report?
Security Lifecycle Review (SLR) reports
summarize the security and operational risks your organization faces,
and breaks this data down so that you can quickly and easily identify
how to reduce your attack surface. Each section of the SLR report
focuses on different types network activity—application usage, web-browsing, data
transfer, and threat prevalence—and surfaces the greatest risks
in each area. SLR reports display your organization’s statistics
alongside the averages for your industry peers, so you can best
understand your results in context.
Executive Summary
Provides a bird’s-eye view of the state
of your network. Statements on the total number threats detected
on your network and the number of applications in use (including
high-risk and SaaS applications) allow you to quickly assess how
exposed you are to risk and focus areas for more strict or granular
security policy control.
Applications
Gives you a view into the applications traversing
your network, especially highlighting applications that are commonly
non-compliant and/or can introduce operational or security risks.
Application findings also include total and application-level bandwidth
consumption and the applications in use according to type (like
media or collaboration). This application visibility allows you
to weigh the business value of applications in use on your network,
against the risk applications can introduce (such as malware delivery,
data exfiltration, or excessive bandwidth consumption).
SaaS Applications
Highlights the SaaS applications in use
on your network, including the SaaS apps that are transferring the
most data and those that have risky hosting characteristics (frequent
data breaches, poor terms of service, etc.). Understanding the presence
of SaaS apps on your network can help you work towards safely enabling
the apps that are critical to your business, while providing threat
protection and preventing data leaks.
URL Activity
Summarizes the web browsing activity on
your network. Uncontrolled web access can result in exposure to
malware, phishing attacks, and data loss. URL activity findings
particularly highlight the malicious URL categories that your users
are accessing, and the most highly-trafficked URL categories.
File Transfer
Gives you insight into the most commonly-used
file types on your network, and what applications are being used
to transfer these files. You can use the analysis provided here
to consider more strict controls that prevent sensitive or proprietary
data from leaving your network, and the delivery of malicious content
into your network.
Threats
Summarizes your organization’s risk exposure
by breaking down the attacks detected in your network:
Detected
viruses and malware.
System flaws that an attacker might otherwise attempt to exploit.
Command-and-control (C2) activity, where spyware is collecting
data and/or communicating with a remote attacker.
Your
Threat summary also breaks down the high risk file types detected
on your network, and the file types found to have delivered malware
that was unknown until WildFire detection. Examine this data to best
assess where you can immediately start to reduce your attack surface.
Threats associated with targeted campaigns or malicious actors.
The geographic locations most targeted by threats found in
your network.
Summary
The final summary provides recommendations
that you can consider to safely enable the applications you need
to do business, while reducing the organization’s overall threat
exposure.
After you generate an SLR report, or open an existing
SLR report, there is an option to
Take a Tour
of
the report. Select this option to walk through and learn about each
section of an SLR report.