Cybersecurity. When a user uses insecure devices, he/she performs insecure networks.
In terms of cybersecurity What challenges are faced by public administration and private enterprise?
During the last weeks, rare is the day when we do not receive news of attacks to different public administrations or private companies. Services are down, data is hijacked, ransom is paid… leaving both public bodies and private companies inoperative in part of their systems and directly affecting their activity and the services they provide.
In most of these cases, the virus sneaks in through a staff computer. The user can be inside the organization or teleworking. According to information provided by CISCO, these are the data with the new hybrid work paradigm:
– 6 out of 10 organizations have had more than half of the workforce teleworking during the confinement, and 37% expect to maintain this trend.
– Security remains the top concern for CIOs. 73% ranked it as their number one challenge, followed by the complexity IT is acquiring (67%) and multi-cloud environments (61%).
– 62% of respondents say that secure access is the main challenge of remote work, followed by data privacy (55%) and control and enforcement of security policies (50%).
– Finally, 85% of organizations consider cybersecurity greater than before the pandemic and 66% are increasing investment in this area.
Characteristics of a robust cybersecurity strategy
In different interviews, both in the public administration and in private companies, they have in common that the current Firewall solutions plus VPN connections and an antivirus are not enough nowadays and that they need more layers of additional protection.
With the advent of remote work, everyone agrees that this security should not be confined to the organization’s perimeter, but that the user should have the same layers of security regardless of where he or she is.
From Solutel, we recommend the following layers of cybersecurity protection:
- Use of strong user (multi-factor) and device authentication mechanisms (site protection against attacks and malware) combined with zero trust policies.
CISCO UMBRELLA (DNS Layer protection),
AMP for end Point (antivirus + EDR)
CISCO DUO (two-factor user authentication solution)
- Network segmentation that allows isolating threats if detected ( IBN Networks ).
- Robust protection of access to applications hosted in multiple clouds (what we call multi-cloud security). SASE
