Continuous Vulnerability Management – Dark Web Monitoring

Security Domain

CIS Control 7 – Continuous Vulnerability Management
NIST CSF – Detect: Continuous Monitoring (DE.CM)
NIST 800-53 – Assessment, Authorization, and Monitoring

Service Description

Advancing K-12 education through innovation in teaching, learning and leadership, we bring together students, teachers, researchers, policymakers and educational professionals to foster collaborations that improve education for all learners.

The Friday Institute employs cybersecurity researchers and professionals who identify vulnerabilities and security flaws in PSU computer systems, networks, and software. The purpose of these efforts is to improve cyber hygiene by proactively finding and addressing weaknesses before malicious actors can exploit them. Our team conducts these activities within legal and ethical boundaries in order to enhance the overall cybersecurity posture of PSUs and safeguard sensitive information.

Product

Continuous Vulnerability Management via Friday Institute Technology Infrastructure Lab
Additional information, details, methods, and metrics are available within the 2024 NCSU IT Community Day presentation Understanding Dark Web Operations

Key Benefits

Conduct proactive investigations based on threat intelligence for potential cybersecurity threats against PSU assets across North Carolina
Actively monitoring the Dark Web sites, forums, and other files sharing mediums for any signs of stolen or compromised PSU sensitive information
Continuously identify security vulnerabilities stemming from the continued use of default usernames and passwords on various devices, systems, and applications

Cost to PSUs

No cost – funded by NCDPI K-12 Cybersecurity Program

PSU Time Commitment

Upfront/Setup: N/A
Ongoing: N/A

How to get this service

NCDPI contracts directly with Friday Institute and All PSUs automatically enrolled

Point of Contact

Name: Samuel Carter, Friday Institute
Email: swcarter@ncsu.edu