Las Vegas– We all know that security problems come very
frequently among the Internet users. The users are always worried about
it. So more and more good security technologies are being developed now a
days. Every user want to protect their most valuable data at the best
price,told attendees at Interop this week.
Listen to the words of the president of ITArchitects, John Pironti,”My view of the world is we’ve bought too much product.If all these technologies are working, why are we having a breach every week?”
He is of the opinion that most of the security measures are highly costly, but eventhough, they are really effective.He adds that the anti-viruses help us to get rid of about 30% of viruses.There are some security technologies that work at cross purposes. For example, it’s possible to prevent data from reading the attackers,if it is encrypted as it moves around the network.Not only that, through this, data will be invisible to data-loss prevention gear.
“Technology can add cost without adding value,” he says.
Big companies which have high data collection will always be worried about this security threats.They would like to develop a plan for dealing with foreseeable problems.And this will end in better and more efficiently deployed defenses. The following are five important things that you should take care of before buying a security technology.
1. The first thing you should do is creating an information risk profile of your business. And in it, the things like what data has what value to the company, what’s acceptable loss, how loss affects partners and suppliers, what controls will be needed etc. should be included.
2. You should keep a map of your business processes and then track the moving of data through those processes. Check whether there are any other methods to handle data more efficiently. For example,If you are using distributed databases, then change it and use central databases which will reduce network complexity and therefore improve security.
3. There should be an asset inventory for checking the location of all the corporation data.While doing this, you may get surprised because this can be led you to the smartphones and tablets of employees,says Pironti. Data should be classified and there should establish some controls for each class.
4. Threat and vulnerability analysis should be conducted and through this,we can understand how adversaries would attack the network if they knew its vulnerabilities. After doing this, the solutions or countermeasures for each case should be found out. With this, you should keep an attack technology that will be suitable for the adversaries. Then only the attack scenarios and countermeasures can perform better.
5. Lastly, according to the four former steps,you should identify and implement some appropriate controls. Some times these controls might be more costly than the data they protect. Inform your users to use safer network behavior, for example, ask them not to keep sensitive data in portable devices.
Note: It is important that these controls should not block tasks of business.
Listen to the words of the president of ITArchitects, John Pironti,”My view of the world is we’ve bought too much product.If all these technologies are working, why are we having a breach every week?”
He is of the opinion that most of the security measures are highly costly, but eventhough, they are really effective.He adds that the anti-viruses help us to get rid of about 30% of viruses.There are some security technologies that work at cross purposes. For example, it’s possible to prevent data from reading the attackers,if it is encrypted as it moves around the network.Not only that, through this, data will be invisible to data-loss prevention gear.
“Technology can add cost without adding value,” he says.
Big companies which have high data collection will always be worried about this security threats.They would like to develop a plan for dealing with foreseeable problems.And this will end in better and more efficiently deployed defenses. The following are five important things that you should take care of before buying a security technology.
1. The first thing you should do is creating an information risk profile of your business. And in it, the things like what data has what value to the company, what’s acceptable loss, how loss affects partners and suppliers, what controls will be needed etc. should be included.
2. You should keep a map of your business processes and then track the moving of data through those processes. Check whether there are any other methods to handle data more efficiently. For example,If you are using distributed databases, then change it and use central databases which will reduce network complexity and therefore improve security.
3. There should be an asset inventory for checking the location of all the corporation data.While doing this, you may get surprised because this can be led you to the smartphones and tablets of employees,says Pironti. Data should be classified and there should establish some controls for each class.
4. Threat and vulnerability analysis should be conducted and through this,we can understand how adversaries would attack the network if they knew its vulnerabilities. After doing this, the solutions or countermeasures for each case should be found out. With this, you should keep an attack technology that will be suitable for the adversaries. Then only the attack scenarios and countermeasures can perform better.
5. Lastly, according to the four former steps,you should identify and implement some appropriate controls. Some times these controls might be more costly than the data they protect. Inform your users to use safer network behavior, for example, ask them not to keep sensitive data in portable devices.
Note: It is important that these controls should not block tasks of business.
0 comments:
Post a Comment