Network Security - External endpoints with insecure ports exposed
Description
The "Insecure Ports" metric tracks external endpoints with open ports that are improperly configured or vulnerable, highlighting potential entry points for cyberattacks, which is critical for reducing the organization's exposure to exploitation and ensuring the security of its network infrastructure.
| Attribute |
Value |
| Metric id |
ns_insecure_ports |
| Category |
Network Security |
| SLO |
90.00% - 95.00% |
| Weight |
0.5 |
| Type |
 |
References
| Framework |
Ref |
Domain |
Control |
| CIS 8.1 |
12.2 |
Network Infrastructure Management |
Establish and Maintain a Secure Network Architecture |
| ISO 27001:2022 |
A.8.20 |
8 Technological controls |
Networks security |
| NIST CSF v2.0 |
PR.DS-02 |
Data Security (PR.DS) |
PR.DS-02: The confidentiality, integrity, and availability of data-in-transit are protected |