Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    What is a Security Tech Stack?

    Stu Sjouwerman | Jun 7, 2022

    What is a security tech stack? This is a bare-bones quick overview. 

    First of all, the term “stack” is used because it describes layers that deliver services and exchange information to achieve a higher level service. The concept of a “security stack” communicates that security must be an integrated set of services.
     
    Every layer is a particular technology with its own features.  The security stack needs to be designed from the ground up knowing that security is a vital network element, just like multiple blueprints (electrical, plumbing, flooring, etc.) are required to construct a safe and stable building. Whitepaper with more
     
    So, what would be a rock-bottom, bare minimum security stack? Here is a picture. We should add secure login to that as a fifth layer. 
    security-tech-stack

    In general, there are a few things that CISOs agree on in the sense of bare minimum, here is a list of 5 essentials:

    1. Email security
    2. Security awareness training
    3. Multi-factor authentication
    4. A good endpoint protection tool like next-generation antivirus 
    5. Patching and vulnerability management

    But there are literally tons of other layers (tools) that in many cases should be added. Here is a picture of a security stack that a managed security service provider (MSSP) created for their customers. The layers together provide a higher level service, and include some of the bare minimum list above. 

    mssp-security-tech-stack

    However, it can get super sophisticated! Here is an example of a list of technologies in orange on the left that gives you an idea of the potential complexity, of in this case the Azure security stack.

    Azure security stack

     

     

    Topics: IT Security

    Get Your Customized Automated Security Awareness Program, ASAP!

    Many IT pros don’t exactly know where to start when it comes to creating a security awareness program that will work for their organization.

    We’ve taken away all the guesswork with our Automated Security Awareness Program (ASAP).

    ASAP is a revolutionary tool for IT professionals, which allows you to create a customized Security Awareness Program for your organization that will show you all the steps needed to create a fully mature training program in just a few minutes!

    asap-monitor-1Here's how it works:

    • Answer seven questions about your organization’s goals, compliance needs, and culture
    • ASAP recommends suggested training content based on your answers
    • See a detailed calendar with a customized task lisk to get your program started
    • Easily export detailed and executive summary PDF versions of your program
    • Get a fully mature awareness program ready in 5 minutes

    Get Started Now

    Secure the Digital Workforce: Human + AI

    KnowBe4 empowers the modern workforce to make smarter security decisions every day. Trusted by more than 70,000 organizations worldwide, KnowBe4 is the pioneer of digital workforce security, securing both AI agents and humans. The KnowBe4 Platform provides attack simulation and training, collaboration security, and agent security powered by AIDA (Artificial Intelligence Defense Agents) and a proprietary Risk Score. The platform leverages 15 years of behavioral data to combat advanced threats including social engineering, prompt injection, and shadow AI. By securing humans and agents, KnowBe4 leads the industry in workforce trust and defense.

    Stu Sjouwerman

    ABOUT STU SJOUWERMAN

    Stu Sjouwerman (pronounced “shower-man”) is the Founder and Executive Chairman of KnowBe4, Inc., which hosts the world’s most popular integrated security awareness training and simulated phishing platform, with over 54,000 organization customers and more than 50 million users. A serial entrepreneur and data security expert with 30 years in the IT industry, Stu was the co-founder of Inc. 500 company Sunbelt Software, a multiple award-winning anti-malware software company that was acquired in 2010.

    Read more from Stu »

    Subscribe to Our Blog

    Posts By Topic

    View All