The attack surface is a collective term to describe all possible avenues (or ‘vectors’), a threat actor with malicious intent can ‘attack’ to gain unauthorised access to a system and therethrough, your data. The smaller the attack surface, the easier it is to protect. Minimisation of your attack surface should be a feature of any conversation around adoption of new technologies or processes, or review of existing ones, to manage cyber-related risk.
Regardless of volume, size, or sensitivity, data within any organisation is valuable to the organisation itself, and so, anywhere data resides must be proactively assessed, protected, monitored, and defended, to respond to and neutralise potential threats as quickly as possible.
