PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
December 2013 Vol. 15 / No. 10

Get back to basics for improved network security

As I travel to industry events and talk with peers about network security, the biggest issue I see is that bright, shiny security tools with the latest bells and whistles mesmerize people. Too many companies deploy these tools without analyzing how the technology will be used or integrated with their security management structure. Collectively, network security teams need to put a stop to this mindset; they must slow down, take a look at the network and focus on solving the problems at hand. First, let's look at the security incident process. How many incidents can you recall where the post-mortem review contained items such as install or update the antimalware software; patch the OS, application or hardware; update switch and firewall rules; change access control lists or implement some local device configuration? If your post-mortem meetings are anything like mine, then you are looking at security best practices for corrective actions. How can we use a "back-to-basics" approach with the goal to increase the security posture of...

Features in this issue

Columns in this issue