This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Announcements
New SecOps Webinar May 14th! Learn about Gemini's generative AI within Google SecOps
Log in to ask a question

Mandiant Security Validation: Step 1 - Access & Planning

‎09-06-2024 12:35 PM - edited ‎10-11-2024 12:59 PM

GCSCommunity
Staff
0 0 718

Table of Contents

Below you'll find a table of contents for the Access & Planning journey.

msv-access-planning.png

 

In traditional security deployments, it's extremely difficult - nearly impossible - to validate that your security controls are effective. Mandiant Security Validation (MSV) is a SaaS solution that continuously tests your security controls to ensure they are working as expected.

Prerequisites

  • Entitlement for Mandiant Security Validation.

Actions

msv-access-planning-considerations.png
Planning Considerations

Mandiant Security Validation (MSV) is an extremely powerful platform with a number of features that can be utilized to ensure your security controls are working as expected. In this section we will cover some of the key considerations to keep in mind when planning your deployment.

 
Show More
Prerequisites

See the Relevant Links section for more documentation regarding the prerequisites.

  • Entitlement for Mandiant Security Validation.
Steps
  1. For MSV SaaS, you do not need to deploy a director, just simply login
  2. For MSV onPrem deployments, determine where and how you want to deploy the Director. The Director is the central component of MSV that orchestrates the testing of your security controls and can be deployed as a Virtual Appliance or as Installable Software. | Docs
  3. Determine what type of Actors are necessary in your environments. Actors are the entities that will be used to test your security controls. MSV provides a number of different Actors that can be used, including Linux, Windows, and MacOS Actors.
  4. Determine where and how you want to deploy the Actors. You may find you have a mix and match scenario where some Actors are deployed as a Virtual Appliance or as Installable Software
Relevant Links
msv-access-planning-dir-install-type.png
Director Install Type

The MSV Director can be deployed as SaaS or OnPrem. For the OnPrem solution the MSV Director can be deployed as a Virtual Appliance or as Installable Software. There are some minor differences between the two installations that should be considered when planning your deployment.

 
Show More
Prerequisites

See the Relevant Links section for more documentation regarding the prerequisites.

  • Entitlement to Mandiant Security Validation.
  • Mandiant Advantage Account
Steps
  1. If SaaS, log into SaaS. Your director has already been deployed as part of your purchase. 
  2. If deploying OnPrem, make a decision on OVA or Software Install. | Docs
  3. Utilize the deployment workbook to help organize your deployment planning. | Docs
Relevant Links
msv-access-planning-actor-install-type.png
Actor Install Type

Actors can be deployed as a Virtual Appliance or as Installable Software. You will likely deploy a number of Actors, each with a specific role in your environment. As such, you will need to determine the best method of deployment for each Actor.

 
Show More
Prerequisites

See the Relevant Links section for more documentation regarding the prerequisites.

  • Entitlement to Mandiant Security Validation.
  • Inventory of Systems to monitor and which operating systems they run.
Steps
  1. Review the differences between feature availability for Actor types in the linked documentation. | Docs
  2. Review the Pre-Installation Decisions page regarding actors. | Docs
  3. It is recommended that you deploy one endpoint that everyone in your network uses, a major OS version in your environment (IE: Windows 11), a major server OS version in your environment (IE: Windows Server), and one network actor in a major datacenter or cloud environment.
  4. Utilize the deployment workbook to help organize your deployment planning. | Docs
  5. Obtain the installation files for the Actor Software. | Docs
Relevant Links
msv-access-planning-mandiant-advantage.png
Access to Mandiant Advantage

In order to access Mandiant Security Validation (MSV), you will need access to Mandiant Advantage.

 
Show More
Prerequisites

See the Relevant Links section for more documentation regarding the prerequisites.

  • Entitlement for Mandiant Security Validation.
  • Mandiant Advantage Account.
Steps
  1. Administrators should have received an email invitation to Mandiant Advantage from our support team. If you have not, follow the password reset instructions at the login page. | Docs  
  2. Navigate to the Mandiant Advantage Login Page, sign in using your credentials. | Docs
  3. Upon login, you will see your profile page. Fill out your profile appropriately.
  4. At the top of the profile page, there is an Applications section. In there are links to your deployment of Attack Surface Management, Threat Intelligence, and anything else you are entitled to. Click on Mandiant Security Validation.
  5. For Mandiant Security Validation SaaS, Refer to the following page for how to add additional members of your team Mandiant Advantage accounts, and how to assign them permissions to the Mandiant Security Validation application.  | Docs
Relevant Links
 
 
Contributors
0 Likes
Version history
Last update:
‎10-11-2024 12:59 PM
Updated by: