All Articles

Why EASM Is Foundational For Continuous Threat Exposure Management (CTEM) & Penetration Testing

Posted by Priyanka Aash on May 5, 2024 at 8:20pm in Blog
Why EASM Is Foundational For Continuous Threat Exposure Management (CTEM) & Penetration Testing

Why External Attack Surface Management (EASM) is foundational for Continuous Threat Exposure Management (CTEM)

Gartner says “CTEM is defined as a set of processes and capabilities that allows enterprises to continually and consistently evaluate the accessibility, exposure and exploitability of an enterprise’s digital and physical assets. It is composed of phases — scoping, discovery, prioritization, validation and mobilization — and underpinned by a set of technologies and capabilities, of which EASM is one. CTEM is different from risk-based vulnerability management (RBVM) in that the latter is an evolution of traditional vulnerability management, while CTEM is the wider process around operating and governing overall exposure. It includes solving the identified vulnerabilities as well as optimizing processes in the future so that the vulnerabilities do not resurface. 

EASM is foundational to CTEM for two reasons. First, it provides continuous and improved visibility into assets that organizations have less control over, such as SaaS applications and data held by supply chain partners and suppliers. Second, it assesses and prioritizes resources in mitigating/remediating issues that attackers are most likely to exploit and therefore benefits organizations during the first three phases of CTEM: scoping, discovery and prioritization.” Learn more about Continuous Threat Exposure Management or CTEM: A New Security Approach For CISOs.

  • CTEM enables continuous assessment of accessibility, exposure, and exploitability of digital and physical assets
  • CTEM includes phases like scoping, discovery, prioritization, validation, and mobilization
  • EASM is a foundational component of CTEM, offering enhanced visibility into assets like SaaS applications and third-party data
  • EASM helps assess and prioritize resources for mitigating issues most likely to be exploited by attackers during the initial phases of CTEM
  • CTEM differs from risk-based vulnerability management (RBVM) by encompassing broader exposure governance and ongoing optimization processes

 

Why EASM is foundational for Continuous Penetration Testing 

Gartner says, “EASM can complement penetration testing during the information gathering phase about the target (finding exploitable points of entry). The convergence between penetration testing and EASM will become more prominent as automated penetration testing solutions continue to emerge. 

Most penetration testing performed today is human-driven, outsourced and conducted annually (making it a point-in-time view), which is why the automated penetration testing market has emerged. Although automated penetration testing is an emerging market on its own, some vendors have already added EASM and vice versa. This is because vendors that started in the automated penetration testing market were initially only doing automated network penetration testing and not external testing. Technologies such as EASM, DRPS, BAS and automated penetration testing can collectively provide organizations with a realistic view of the full attack surface within their environment. This lets organizations test what they can or cannot prevent and detect, as well as determine how they would respond in the event of an attack. Therefore, the convergence of these technologies can better support organizations in their CTEM program.” Learn more about Why Is Gartner Talking About External Attack Surface Management (EASM) & Real-Life Attacks

  • EASM complements penetration testing by aiding in information gathering to identify entry points.
  • Automated penetration testing solutions are growing, leading to a convergence with EASM
  • Current penetration testing is largely human-driven, outsourced, and performed annually, providing a point-in-time perspective
  • Automated or continuous penetration testing is emerging due to its ability to provide ongoing assessments
  • Vendors are integrating EASM with automated penetration testing tools to enhance capabilities
  • Technologies like EASM, DRPS, BAS, and automated penetration testing together provide a comprehensive view of an organization's attack surface
  • The convergence of these technologies supports organizations in their CTEM (Continuous Threat and Exposure Management) programs.

 

 Why Is Gartner Talking About External Attack Surface Management (EASM)?

Views: 99
Tags: easm, ctem
Votes: 0
E-mail me when people leave their comments –
Follow
Posted by Priyanka Aash

Matthew Ireland
Matthew Ireland is the CISO at NTT Research, where he focuses on aligning security with business innovation. With extensive experience in cybersecurity leadership, Ireland emphasizes the importance of understanding organizational culture and adapting security strategies to meet evolving business needs. His insights have been shared in various forums, including a recent fireside chat on strategic security management.

Bikash Barai
Bikash Barai is the co-founder of CISOPlatform and FireCompass, platforms dedicated to empowering cybersecurity leaders with actionable insights and community-driven solutions. As a seasoned cybersecurity expert, Barai advocates for leveraging peer networks and innovative tools to enhance security postures. His work supports CISOs in navigating complex security challenges and staying ahead of emerging threats.

You need to be a member of CISO Platform to add comments!

Join CISO Platform

Join The Community Discussion

Read More

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)
 

 

 

CISO Platform Talks : Security FireSide Chat With A Top CISO or equivalent (bi-monthly)

Jun 1, 2025 at 3:00am to Dec 31, 2025 at 3:00am
Virtual
  • Description:

    CISO Platform Talks: Security Fireside Chat With a Top CISO

    Join us for the CISOPlatform Fireside Chat, a power-packed 30-minute virtual conversation where we bring together some of the brightest minds in cybersecurity to share strategic insights, real-world experiences, and emerging trends. This exclusive monthly session is designed for senior cybersecurity leaders looking to stay ahead in an ever-evolving landscape.

    We’ve had the privilege of…

  • Created by: Biswajit Banerjee
  • Tags: ciso, fireside chat

Fireside Chat With Rick Doten (VP - Information Security at Centene Corporation)

Jun 19, 2025 at 9:30pm to Jun 20, 2025 at 10:00pm
Online
  • Description:

    We’re excited to bring you an exclusive fireside chat on "A CISO’s Guide on How to Manage a Dynamic Attack Surface" with Rick Doten (VP - Information Security, Centene Corporation) and Erik Laird (Vice President - North America, FireCompass). In this session, we’ll explore how top CISOs are tackling today’s rapidly expanding attack surface and what it takes to stay ahead of evolving threats in a cloud-first, AI-driven world.

    As…

  • Created by: Biswajit Banerjee
  • Tags: ciso, attack surface management, rick doten, ciso guide

CISO Meetup at BlackHat Las Vegas 2025

Aug 2, 2025 at 5:00pm to Aug 7, 2025 at 8:00pm
Mandalay Bay, Las Vegas, USA
  • Description:

    We are excited to welcome you to the CISO Meetup during BlackHat USA 2025 in Las Vegas! Join us for an exclusive networking, meaningful conversations, and community building with top CISOs and cybersecurity leaders from around the globe. 

    Meetup Details:

    Location: Mandalay Bay, Las Vegas …

  • Created by: Biswajit Banerjee
  • Tags: ciso, black hat, black hat 2025, black hat usa