CISO's Guide to Securing SharePoint - owasp

More documents

Recommendations

Info

#3: Protect Web Applications • Summary: – Web attacks are a common threat – 30% of organizations have external-facing SharePoint sites • Why challenging? – Need to patch the system frequently – 3 rd party add-ons • What is Required? – Real-time attack protection – Reputation based protection: malicious IPs, anonymous proxies – Prevent access to the admin pages by external users • Example: According to CVE details, XSS is the most commonly reported vulnerability in SharePoint.
Patch Protection InfoWorld (2010): “Admins report that a new Microsoft patch is causing SharePoint servers to fall over – and getting them back up isn’t easy” http://www.infoworld.com/t/application-security/june-black-tuesday-patch-causessharepoint-woes-510 31
Page 1 and 2: CISO’s Guide to Securing SharePoi
Page 3 and 4: Impact of SharePoint Insecurity “
Page 5 and 6: Food Brings Along Appetite External
Page 7 and 8: Source: SharePoint: Strategies and
Page 9 and 10: Source: SharePoint: Strategies and
Page 11 and 12: Type of Content Shared Other Propri
Page 13 and 14: Native SharePoint Security Capabili
Page 15 and 16: #1: Getting Permissions Right • S
Page 17 and 18: User Rights Management: Doing it Ri
Page 19 and 20: Automatic Identification of Excessi
Page 21 and 22: Reviewing User Rights with Data Own
Page 23 and 24: #2: Compliance Reporting • Summar
Page 25 and 26: SharePoint Admins Gone Wild Most po
Page 27: SharePoint Architecture - Direct Ac
Page 31 and 32: Google Diggity Project
Page 33 and 34: Database Protection Microsoft Suppo
Page 35 and 36: A Checklist to Securing SharePoint
Page 37 and 38: A Checklist to Securing SharePoint
Page 39: https://www.surveymonkey.com/s/Rese

CISO's Guide to Securing SharePoint - owasp

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?