The Cyber Hygiene Score (CHS) in Saner Cloud allows you to continuously monitor and assess the security posture. By offering measurable insights into cloud security health, the CHS tool aids in identifying risks, tracking improvements, and ensuring proactive compliance at both the organization-level and account-level.
Interpreting the Score
| Score Range | Risk Level | Interpretation |
|---|---|---|
| 0-10 | Critical Risk | The organization’s security posture is extremely weak. Most cyber hygiene controls are missing or ineffective. Immediate and comprehensive remediation is required to prevent breaches. |
| 10-20 | Very Poor | Security posture is severely weak. Core hygiene practices like patching, access control, and configuration management are largely neglected. Urgent action is needed to reduce exposure. |
| 20–30 | Poor | Foundational security measures are inconsistent or poorly implemented. The environment remains at significant risk. Strengthen endpoint protection, update policies, and enforce compliance. |
| 30–40 | Below Average | Some basic controls exist, but many misconfigurations continue to exist. The system lacks regular monitoring and timely remediation. Focus on automating hygiene tasks and addressing recurring issues. |
| 40–50 | Fair | The organization has made some progress, but notable weaknesses remain. Implement continuous assessment, improve patch cadence, and tighten configuration baselines. |
| 50–60 | Average | Core hygiene practices are functional but not optimized. Security gaps exist due to inconsistent execution. Focus on proactive maintenance and periodic risk reviews. |
| 60–70 | Good | The cybersecurity hygiene is strong and reasonably consistent. Minor issues are present but do not pose major threats. Continue periodic audits and awareness programs. |
| 70–80 | Very Good | Most systems are well-maintained, with a strong culture of security hygiene. Only minor process or configuration improvements are required. Maintain routine monitoring. |
| 80–90 | Outstanding | The organization demonstrates excellent cyber hygiene maturity. Controls are effectively managed and continuously improved. Maintain the current strategy and validate resilience regularly. |
| 90–100 | Excellent | A model of cybersecurity excellence. Preventive and detective controls are optimized, and continuous improvement is embedded in operations. Sustain through ongoing innovation and threat intelligence integration. |
Cyber Hygiene Score at Organization Level
The Cyber Hygiene Score dashboard view displays the organization’s overall CHS as a weighted average of accessible account scores. The 0–100 scale offers a clear view of the current security posture.
The gauge features a color gradient ranging from red (indicating a low score) to green (indicating a high score), with 50 marking the midpoint.
Cyber Hygiene Score at Account Level
Displays the Cyber Hygiene Score trend over the past 30days.
At the account level, the score for the current week shows an increase or decrease of +x OR -x points compared to previous measurement period, reflecting the change in the overall cybersecurity posture.
What does increase(+x) in CHS indicate?
The positive score in the Cyber Hygiene Score indicates that your organization’s overall security posture has improved compared to the previous measurement period.
A positive change in the Cyber Hygiene Score indicates an improved security posture, typically achieved by addressing vulnerabilities or misconfigurations, applying necessary security patches, enhancing access controls, eliminating insecure or unused assets, and adopting recommended security best practices.
In summary, higher score indicates reduced risk exposure and better alignment with cybersecurity standards.
What does decrease(-x) in CHS indicate?
The negative indicates a decline in cybersecurity posture, signalling the need for immediate investigation and remediation.
Additionally, there is an option to export data in CSV format for detailed analysis.
How does Saner Cloud Compute the Cyber Hygiene Score?
The Cyber Hygiene Score (CHS) for a resource is calculated as a weighted average of its Global Score and Local Score, with default weightings of 80% for the Global Score and 20% for the Local Score. The Global Score indicates the overall security posture of a resource, while the Local Score evaluates it in comparison to similar resources within the same account. Together, these scores provide a comprehensive view of both absolute and relative security. The CHS typically ranges from 0.96 to 99.6, with higher scores signifying stronger security hygiene.
See Also
