Comparing security to an onion might sound trivial at first, but it makes perfect sense, according to spotit Security & Networking Architect Jeroen. The core of an onion is protected by its layers, and the more layers there are, the better the core is safeguarded. Similarly, adding more layers to a security solution enhances the protection of an organization. By leveraging the ‘advanced’ features of your next-generation firewall (NGFW), you can already add extra layers of security. Expert Jeroen explains how, providing specific examples on how to protect your company better against emerging threats like DNS abuse and automated malware.
25 minutes of spotit knowledge sharing
How to cope with advanced threats and sophistication of modern attackers?
During an inspiration session Jeroen shared with us the following key insights:
- Don’t put all your eggs in one basket. Choose a “Defense in Depth” strategy that employs multiple security products and methods to safeguard an organization and its assets. This approach, also known as ‘layered security,’ relies on solutions across multiple control layers to prevent attackers from accessing a protected network.
- Traditional networks can no longer keep up with the speed, volume, and sophistication of modern attackers. Today’s networks require a more dynamic approach as attack techniques have evolved significantly.
- According to Gartner’s definition, a next-gen firewall must include enhanced security measures to address both current and emerging threats. Emerging threats, in particular, show rapid development in attackers’ tactics, such as automated malware, evasive phishing attacks, and DNS abuse. Various NGFWs/security products leverage artificial intelligence (AI) and machine learning (ML) for early threat detection and security policy recommendations.
Examples include:
Cisco Umbrella: A cloud solution (DNS, etc.)
Utilizing data from 30,000 customers and machine learning to automatically detect malware, ransomware, and more.Palo Alto Cloud-Delivered Security Services:
A global network supporting over 65,000 customers, incorporating third-party databases to provide collective threat intelligence.By using these services, organizations can benefit from vendor-collected and continuously updated intelligence from diverse sources (such as customers and external data). This enables swift response to new and unknown threats.
- Advanced Threat Prevention, Advanced WildFire, Advanced URL Filtering, and Advanced DNS Security are just some of the many features now available in Next-Gen Firewalls that contribute to a layered security approach.
Watch the full video of Jeroen:
Would you like advise on how to optimize your network security?
Contact us. Jeroen and team are happy to share their insights with you.