Is It Time To Consolidate Systems?

Uploaded on 2022-11-03 in FREE TO VIEW, BUSINESS-Services-IT & Telecoms, TECHNOLOGY--Resilience

In the world of HiFi, there has always been the debate around individual components verses a combined system. The former, site selecting the optimum individual unit for a specific role, is best, it will ensure the ultimate results in HiFi quality. It can, however, be complex to marry together, and other units, such as a graphic equaliser to balance the sound, may be required.  

In the end, you have a system which may have good sound, but do you really appreciate it and have the time to tweak it, when you play different genres of music?
 
This conundrum gave birth to the integrated HiFi unit. They were uniform systems that stacked neatly on top of each other, had pre-set buttons for sound effects (pop, rock, theatre etc.) and had reasonable sound quality for the average room.
 
The data security world is in the same position as the component HiFi was, back in the day. The current reality is, that rather than reducing complexity, too many businesses are managing multiple point products, incompatible dashboards, and struggling to integrate new systems with existing defences.

This applies to all size of business but is especially hard for a mid-size enterprise, where resources are stretched and the skills needed to truly understand the information that is being presented, simply not there.

A new solution, identified by Gartner, is Security Service Edge (SSE) which is emerging to reduce complexity and improve detection and response, all in one integrated system, much like in the HiFi world.  According to Gartner, “SSE secures access to the web, private applications, and usage of cloud services. Capabilities include access control, threat protection, data security, security monitoring and acceptable use control, enforced by network-based and API-based integration”.
 
The SSE approach relieves the pressure on IT teams by integrating security from a single cloud-based platform, vital for all businesses but especially those in the mid-sized arena.
 
As Gartner notes, “vendors are increasingly divided into ‘platform’ and ‘portfolio’ camps, with the former integrating tools to make a whole that’s greater than the sum of the parts, and the latter packaging products with little integration. “As the platforms shift to the cloud for management, analysis and even delivery, the ability to leverage the shared responsibility model for security brings enormous benefits to the business”.
 
When looking for a solution, Gartner suggests:

  • That differentiating between these approaches is key to the efficiency of the suite.
  • Look at how integrated the consoles are for the management and monitoring of the consolidated platform.
  • Assess how security elements can be reused without being redefined or can apply across multiple areas seamlessly.   

An autonomous, integrated security platform has the capacity to tackle evolving threats, right across an organisation’s attack surface, round-the-clock and, at lightning speed.  Operating a single platform means all your security functions can share relevant data in a single, transparent dashboard, improving speed and accuracy of response and reporting, while helping to mitigate against cross-channel attacks and eliminate complexity.
 
SSE Platforms Have Some Key Benefits:

Enables Investment in the right security solutions at the right time:   Unlike combined HiFi systems modern SSE platforms allow you to build part by part, allowing you to consider whether you can consolidate defences and connect email, web and cloud security with identity and context – so there are no weak spots to target.

Eradicate complexity:    Instead of managing multiple point products and ploughing time or effort into supporting legacy solutions like VPNs, MPLS and WAF deployments, embrace cloud native security that ensure updates can be applied without the need for manual intervention.

Create your own rules:   Ensure you can pre-define what can act autonomously and what cannot. Create your own rules based on thousands of attack scenarios for machine speed response to enhance protection.

Gain visibility of threats across your entire ecosystem:   Stop cross-channel attacks from occurring with shared attack intelligence. Leverage in-built threat intelligence feeds to proactively stop attacks even entering the kill-chain.

Autonomous integration:   Enable cyber defences to work together, untouched by human hand, with full API provisioning and management.
 
The SSE approach enables organisations to move away from the more expensive and time-consuming approach of running separate solutions in silos. Instead, it gives companies an integrated approach that is simpler to use, easier to manage and, reduces the need for manual intervention.
 
Crucially, a platform approach enables digital business, giving users the freedom to access the applications and data they need, regardless of device or location, whilst providing visibility of threats and the tools to remove them to the IT team, to make better use their time.
 
Colin Tankard is Managing Director of Digital Pathways

You Might Also Read:

Is Your Anti-Virus Doing Its Job?:

 

« The Do’s and Don’ts Of Security Risk Management
Leveraging Data Privacy For Artificial Intelligence »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Itaccel

Itaccel

IT Accel began a decade ago as a band of technical recruiters who wanted to bring our experience and depth of knowledge to solving complex human resou

GlobalSign

GlobalSign

GlobalSign is an identity services company providing cloud-based, PKI solutions for enterprises needing to conduct safe commerce, communications, content delivery and community interactions.

Apicrypt

Apicrypt

Apicrypt enables secure communications between health professionals by using strong encryption technologies.

Exatel

Exatel

Exatel is Poland’s leading provider of ICT security services.

Visual Guard

Visual Guard

Visual Guard is a modular solution covering most application security requirements, from application-level security systems to Corporate Identity and Access Management Solutions.

Cybertonica

Cybertonica

Cybertonica is a FinTech company which detects and prevents fraudulent transactions and reduces risk for financial services organisations.

Desec Security

Desec Security

Desec's training platform allows professionals around of the world to acquire knowledge and practical experience in Information Security.

Quintillion Consulting

Quintillion Consulting

Quintillion Consulting is a strategic risk based consulting firm. We help companies safeguard the core business and IT capabilities that deliver competitive advantage.

Hong Kong Broadband Network (HKBN)

Hong Kong Broadband Network (HKBN)

HKBN are a leading integrated telecom and technology solutions provider that offers a comprehensive range of premier ICT services to both the enterprise and residential markets.

ClubCISO

ClubCISO

ClubCISO is a community of peers, working together to help shape the future of the information security profession by facilitating independent discussion on data security and cyber resilience.

Paradyn

Paradyn

Paradyn-managed security services can provide a holistic view of your business environment, no matter how simple or complex it is.

Cyber Security Authority (CSA) - Ghana

Cyber Security Authority (CSA) - Ghana

The Cyber Security Authority has been established to regulate cybersecurity activities in Ghana.

InfoSec Brigade

InfoSec Brigade

InfoSec Brigade offers a suite of specialized solutions that help businesses to mitigate risk by integrating cyber and IT security protocols with business goals.

Mobilicom

Mobilicom

Mobilicom is an end-to-end provider of cybersecurity and smart solutions for drones, robotics & autonomous platforms.

Vector Choice Technologies

Vector Choice Technologies

Vector Choice Technology Solutions has a long standing reputation in cyber security consulting since 2008.

Zyxel Networks

Zyxel Networks

Zyxel Networks is a leading provider of secure, AI-powered networking solutions for small to medium businesses (SMBs) and the enterprise edge.