In every targeted attack, a weakness is exploited. These weaknesses are loopholes attackers exploit to gain unauthorized access to a target environment through authorized channels. A weakness can be a software vulnerability, hardware driver vulnerability, a misconfiguration, not having a critical patch, an asset exposure where unwanted applications are installed, deviations in security controls, or Posture Anomaly.

In this technical paper, understand how Continuous Posture Anomaly Management (CPAM) assesses deviations based on statistical algorithms, rule-based outlier detection, and anomalies in data trends and monitors security control deviations.