Armed with existing security, people, processes, and technologies, organisations have become very aware and educated in how to protect their businesses crown jewels.
However, things are changing constantly. Which means that in order for businesses to remain secure as they scale, they need to employ additional people, processes and technologies every year, right?
Well, that’s a firm maybe.
As our industry has matured, the discussions have changed along with the threats and technologies to address them… But with this rapidly changing environment, what’s the right security approach for your organisation?
This question needs to be carefully considered, taking into account your current status, what technologies you already have, your platforms, applications and data topologies, your organisation’s purpose and drivers, and possibly external influences like industry regulations. From here, we can soon identify what standards we might want to adhere to, what we can do with your existing solutions to get us there without major spend, and perhaps highlight areas that should be addressed.
Small changes create big results
There are some areas where a small change can radically change your security posture, workload and spend.
Network Visibility has come to the fore in many recent conversations.
Says Mark Spencer, National Security Business Manager at Outcomex
It means different things depending on who the discussion is with. For Network Detection and Response (NDR) providers, it’s access to network data; for Security Information and Event Management (SIEM), it’s access to log data.
This can be delivered by architecting your solution in such a way that it directly connects everywhere. Yet this can be costly, both in terms of time and budget as you replicate the technology across your entire environment – and is therefore rarely achieved.
Looking into how security technologies are able to access your network data across your hybrid architecture is one such small, yet pivotal change.
Another option is to add a visibility platform to deliver and right size the data. These platforms, like those from Gigamon, aggregates the data from the entire environment while greatly reducing what is being sent to the security solutions by only parsing the relevant information, deduplicating and enhancing it for the recipient technology.
This approach can deliver a real boost in security posture, giving security tools and teams a view of the whole environment, with less load and quicker response capability.
Mark Spencer
Mark has over 20 years’ experience working in global security organisations developing partnerships and alliances, programs, strategies, and advising organisations predominantly in the ANZ region on their cyber requirements. Senior roles with Symantec, RSA, Websense, Trend Micro, Gigamon and more, place him with a unique view across the ever-changing security landscape.
In his current role as National Security Business Manager at Outcomex, he is responsible for consulting and enabling best security practices and outcomes for our clients. From classic on premise, to hybrid, IoT to public cloud and any mix of environments that our clients have, Mark can engage the extensive resources of the Outcomex team, our vendors, and partners to enhance the security posture of any organisation.
For more information or to see how Outcomex can help you and your security alignment, contact our specialist Mark Spencer.