I would like to implement a CMDB solution with an automated discovery module/solution that will allow the automated identification of all new devices/assets (Servers, endpoints, applications, network devices, users) that are connected to the network. What platform/service do you suggest?

Security & GRC
276 views3 Upvotes3 Comments
CIO Strategic Advisor in Services (non-Government), 2 - 10 employees
ServiceNow is the gold standard and has the ability to do discovery. If I recall, the cost to include discovery is pretty significant. You will want to evaluate the value you get from it.
1
President in Software, 51 - 200 employees
We have used Zenoss for this purpose successfully at very large scale.
1
Director in Manufacturing, 1,001 - 5,000 employees
We tried ServiceNow in the cloud and licensed the Discovery module.  We also paid for some ServiceNow consulting to get discovery functioning but it was a complete failure (year 2020).  The internal team didn't have enough experienced engineers with even some of the basic knowledge of MAC addressing schemes to help them analyze the data dumps.  I personally tried unofficially to get involved to help guide them, but we just could not automate at that time across such a huge company (130k employees, 80 countries, hundreds of thousands of devices on the network.   Part of the problem was our security posture, and allowing enough rights for the scanning to even take place.   I hope there has been better advances in the scripting to populate the CMDB since then.

2

Content you might like

If you had a magic wand - what's the #1 daily business challenge you'd eliminate?

People & LeadershipStrategy & ArchitectureCloud+57 more
CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
142 19 Replies
Read More Comments
42.1k views131 Upvotes319 Comments

Which of the following measures do you have in place to safeguard against ransomware attacks?

Security & GRCRisk ManagementCrisis Management

Cyber insurance with ransomware coverage44%

Law enforcement contact(s)44%

Ransomware response plan60%

Ransomware task force/team39%

Bitcoin account for ransomware payments14%

Disaster recovery site33%

Other (comment below)1%


571 PARTICIPANTS
1.5k views

Does the risk of Ransomware and malware propagation bother you? Is IoT security a top of mind for you? To protect against many risks, we have witnessed success of micro-segmentation in the data center. Would you be willing to deploy similar solution for the campus? I am very curious to get your feedback?

Security & GRCThreat & Vulnerability Management
Read More Comments
3.1k views5 Upvotes5 Comments

What is your organization's main driver to secure your mobile payment application(s)?

Security & GRC

Fraud mitigation20%

Protection of reputation and brand56%

Protection of consumer data18%

Regulatory or compliance requirements7%


169 PARTICIPANTS
776 views

Any recommendations on OT security product? I tried pushing Crowdstrike but it wasn't approved by OEMs. Other two are Claroty and Nozomi. Any feedback either on above two or any other as per your experience?

Security & GRCStrategy & Architecture
Read More Comments
1.9k views1 Upvote2 Comments