By Inus Dreckmeyr, CEO, Netshield South Africa
We’ve all heard the predictions: security vendors expect 2017 to bring more focused and personalised cyberattacks.
And that’s precisely why I believe companies should consider multiple layers of security to protect their companies.
Even the best possible security software will not offer your business 100% protection against external threats, all of the time. Security software also cannot protect you against all internal threats – nothing can. But a comprehensive implementation of several layers of security, starting at a physical level in your organisation, will at least alert you to an attack early enough to do something about it.
I’ve seen many companies become complacent once they have installed security software. They then tend to forget that the phenomena of bring your own devices (BYOD) – including a promotional memory stick – combined with more broadly available connectivity, makes corporate systems more vulnerable than they have ever been to insider attacks.
But your employees would never do that, I hear you say. However, an insider attack needn’t be via a malicious employee. It could simply be an employee who has downloaded the latest game on their smartphone. If that software has a piece of malware included, and the employee has access to your corporate network via their cellphone, the malware could populate your network in seconds.
You have to protect the base and foundation of your network at all times. One way to do it is to protect each layer separately. View the physical components, as well as the software and endpoints within your network as individual “things”, and then layer your security approach to each. You will not only have better management and control of each layer, but better security as well. If you follow this more layered approach you can then start applying solutions such as a proper access system at a granular level. This then allows you to monitor exactly who is working on any aspect of the network at all times.
And yes, strong passwords are still a good deterrent, but they offer little protection. If John, your marketing director, leaves the office for a meeting without logging off, his machine and the network are both vulnerable. If, however, John’s network access is automatically logged out the minute he swipes his physical access card to leave the building, there is an added layer of protection.
If we assume that there is very little that will actually protect your company from cyberattacks happening, monitoring and linking physical access can make a huge difference to your response to attacks. The network administrators would be alerted that John’s machine is accessing the network, even though John is out of the office. They can investigate the threat, shut down John’s machine remotely and stop a potential breach in its tracks.
In most companies I’ve worked with, employees understand that this is a global trend and they generally do not take offence at being monitored and tracked in this way. They know that everything they do on their smartphones is being tracked by someone – even if it is just using Google. Extending this tracking to a scenario that ultimately makes their jobs safer, by safeguarding the company’s core business, is unlikely to upset a rational worker.
I suggest that you indulge in some “black box thinking”, and look at every possible layer of security on your network, not only the software layer. Keep asking yourself “how secure is this really?” and build layers of security around each process.
When it comes to networks, the first layer should always be physical, bearing in mind that it is not good enough to control only who logs in or who accesses the building. You should also control who has access to your network, your server room and the server cabinet that houses your core network infrastructure, and which logins assigned to users in the business can make critical changes on the core network.
This is where products like Netshield’s NVIROMON-1S come into their own. NVIROMON-1S is not just used to monitor and control the conditions inside a room, detecting heat, humidity, gases and fires, as well as power outages. You can very easily and effectively ensure that your NVIROMON-1S provides you with additional security layers for complete control of who has entered and who has logged into the network with physical security to server rooms and network devices. It provides an additional simple but effective layer of security for businesses.
With the NVIROMON-1S you can detect and proactively react via an easy-to-use dashboard. What’s more is that the NVOROMON-1S will proactively alert you via SMS or email if you aren’t within the direct vicinity of your management console.
In the process, you get an additional simple – but very effective – extra security layer for your business.