Written by:
Eric Wolfe
Managed Services Administrator
NET Xperts LLC
Cyber security is a moving target. So what can be done to proactively protect data and systems? Adopting a solid defense-in-depth strategy can help minimize the risk an organization is exposed to. Defense-in-depth involves a layered approach to security mitigation. More specifically, defense-in-depth involves all aspects of the technology infrastructure, including hardware, software, policies, procedures, training, awareness, and accountability. The primary goal is to minimize the probability of a successful attack by establishing multiple barriers of access. A well-designed defense-in-depth strategy can help identify attempted compromises to an organizations computing environment. If unauthorized access to a system occurs, established defense-in-depth measures help to minimize any adverse impact and provide sufficient time to deploy new or updated countermeasures to prevent future attacks. While there are some obvious strategies to be utilized (for example: installing a firewall to protect the environment from outside entry), there are some basic elements that are generally overlooked. Such items include:
While the points above are in no way comprehensive, they do illustrate some areas often ignored. Remember, the goal of a good defense-in-depth strategy is to sway the “effort vs. reward” pendulum so that the effort necessary is not worth the reward obtained. By “locking and monitoring multiple doors” to our infrastructure, we can make it unpleasing for the hacker wanting to knock!
NET Xperts LLC and our NET X Alert! Managed Services can help add to your layers of security to protect your business and your vital information. Call us at 412.244.NETX (6389) today to learn more about protecting your network!