One Article Review
| Source |  AlienVault Blog |
|---|---|
| Identifiant | 2042142 |
| Date de publication | 2020-11-18 12:00:00 (vue: 2020-11-18 13:05:36) |
| Titre | 5 questions every higher-ed security leader should ask |
| Texte | Patrick Robinson and Mike McLaughlin contributed to this blog. In the day and age of COVID-19 we have witnessed a transformation of the way we work. If I were asked before March of 2020 how long it would take to make the progress in digital and security transformation that we as a society have made in the last 9 months, I would have guessed at least 5 years. The rate of adoption in the face of the pandemic has been unprecedented. Nowhere have the changes required to make remote working come on faster than with education. Whether it’s K-12 or high-education remote access adoption and the security measures that accompany have been implemented at a blistering pace. This article will lay out a few questions and requests that we at AT&T have been asked by education customers to help them build out better, faster and more secure access for their students, faculty and staff to accommodate for the sudden change in the workplace and learning centers all across the U.S.. How quickly can I get larger internet connections and how can we secure those internet connections effectively from a global standpoint? Speed of increase in bandwidth for most clients depends on several things such as facility availability, turn up time with the carrier and contracting requirements between the customer and the carrier. As for the best way to protect internet connections with dedicated IP addresses, it’s a multiprong effort. With today’s cyber landscape security decision makers have multiple attack vectors to consider when putting a cyber-posture in place. Traditionally a firewall is a given. Firewalling an internet connection still holds true but there is much more to evaluate. Questions to ask yourself: What will you have behind that firewall? Will you deploy a demilitarized zone (DMZ) in the environment to host public facing networks? Are you increasing bandwidth to accommodate remote workers, if so, how many workers will be internal to the network versus external workers who are dialing into the environment? How important is uptime to your business mission? Do you have anything deployed in the cloud that your external users would route to through the internal network (hair-pinning)? Do you want to make users authenticate with network credentials at the gateway or do you want the users to authenticate multiple times (once for VPN and once or more times for network access)? Do you have multiple locations tying into the location with the increased bandwidth through site to site VPN or Software Defined Wide Area Networking? Do you utilize Multi-Protocol Label Switching (MPLS) between sites? Do you have industry compliance requirements to meet? Will you be running Next Generation Firewall Subscription services on your gateway (edge) firewalls? Do your organization’s uptime requirements require that a high-availability configuration is required to attempt to achieve 5x9’s reliability minimum? As you can see there isn’t just one definitive answer to the question of “what should I use to protect my users, internal network and upgraded bandwidth”? With the number of Distributed Denial of Service (DDoS) attacks that have become so prevalent with higher-ed institutions in the last year, DDoS Mitigation Security services are essential and are usually very affordable to monitor for volumetric attacks. However, of course, the more that the customer monitors for, and the more mitigation time that the customer requires, the more expensive the service can become. A few of things to think about with DDoS attacks when deciding what you need for your new circuit: Where might the attacks be coming from? Do a little research on the attack vectors for D |
| Envoyé | Oui |
| Condensat | “2020 “many “of “once “the “what an questions 128 2019 2020 439 5x9’s 966 about above access accommodate accompany account achieve achieved acl across act actively actual adage addresses adoption advancements advent affordable after against age agencies agency all almost alone along already always answer any anything appeared application apply april are area around arrest article ask asked aspects assessment assume astute at&t attack attacked attacker attacking attacks attempt audit authenticate availability awareness back bandwidth bandwidth” barraged based battering become becoming been before beginning behind being best bet better between beyond biggest billion bitten blistering blog breaches brokers budget budgets build bump busiest business but calling can capable carrier casb cases causing centers certain change changed changes chief circuit: ciso’s cisos cities classes clean clients climb closures cloud com: combined come coming common companies comparable compliance compounded computer conceivable concept conclusion configuration connection connections consider contracting contributed control conversation copycats costly could counted couple course covers covid credentials criminal crisis crooks curveball customer customers cyber cybercriminals cybersecurity cyberthreat dangerous data date day days ddos deal deciding decision decline decreased dedicated deepening defenses defined definitive demilitarized denial departments depends deploy deployed despite dialing did digital directors disrupting disruptive distributed district districts dmz doing don’t downtime dozens drained dropped during easier edge education educational effective effectively effects efficiency effort efforts eight either element emsisoft encompasses end engaged engineering ensure entire entities environment epic equal especially essential essentially established establishments evaluate even events ever every everyone everything evolved executive exfiltrated exfiltration expected expensive exploiting external fabian face facilities facility facing faculty far faster fear february federal feels fewer figure find firewall firewalling firewalls first fit five follows: forms four from functionality gain gains gateway general generally generation geographical get given global globally goal going gold gone good gotten government graduate great group groups growth guessed hacking hacks had hair half happens hard has have having head healthcare help helps high higher highly hijacked history hold holds home hope hospitals host how however impacted implemented important improve incidents included including increase increased increasing increasingly industry infiltrate information inhouse instance institution institutions interacts internal internet introduction investment isn’t issues it’s its january january/february january/february’s jobs july jumpstart june just kass keeping keys kingdom kneed know knowledge label labs landscape large larger last late lay leader learn learning least leave less levels light like likely limit list listed little loaded local location locations long longlining looking looks lot luck made make makers malicious malware mandates many march march/april marks material matter may mclaughlin measures meet met might migrate migration mike minimum mission mitigate mitigating mitigation money monitor monitors month months more most move moved mpls msspalert much multi multiple multiprong narrow need netting network networking networks never new new emsisoft next nine non not now nowhere number numbers occur occurred occurring off officer old once one only operations opinion organization organization’s organizations other others out over overall overarching pace pandemic part partial pat patrick patterned people perfect perfection period phishing pinning pinpointing place placed plans pledged pocketing point police policies population possibly posture pre prerequisite prevalent previous prey procedures processes progress project |
| Tags | Ransomware Malware Guideline |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.