Expanse’s Matt Kraning: Agencies Need Centralized Strategy to Monitor Internet Attack Surface

Matt Kraning

Matt Kraning, chief technology officer and co-founder of San Francisco-based Expanse, has said government agencies need a centralized strategy to secure, govern and monitor all internet-connected devices.

“Agencies must strive for continuous technical validation of the internet-connected assets on their systems and those of their contractors and suppliers so they can constantly monitor them for potential vulnerabilities,” Kraning wrote.

He cited a ransomware attack on medical testing firm LabCorp and a data breach into a Navy contractor’s system as some of the examples of threat actors’ efforts to target unmonitored assets.

“The bottom line is you can’t protect what you don’t know about,” Kraning said. “If you’re validating the security of your department or agency but do not know where all your assets are, then your policies and procedures can have substantial and material gaps, leading to a false sense of confidence in your security posture.”

Kraning also mentioned how Expanse helps the Defense Information Systems Agency facilitate continuous discovery and track the internet attack surface for the Department of Defense Information Network.

Check Also

KBR

KBR Wins Potential $93M Navy Combat Integration System Support IDIQ

KBR’s (NYSE: KBR) government services business has won a potential five-year, $92.6M contract to engineer and produce datalink systems and associated platforms for the U.S. Navy’s combat operations.

DLA

DLA Awards Logistics Modernization Integration Support IDIQs to Advantaged Solutions, United Defense International

Advantaged Solutions and United Defense International have each received a potential five-year, $265M contract from the Defense Logistics Agency for logistics modernization integration support.