What is Zero Trust? Zero Trust is a framework and attitude towards IT security that centers on the idea that we in the IT field cannot trust anyone or any device on our network. Many systems administrators are well versed in this model. Every employee is assigned a domain joined laptop that is locked down via Group Policy. Those employees are tracked via a user identity using their AD profile that, through security groups, either allow or restrict access to various IT assets (servers, printers, wireless, and/or client VPN). Accounting is enabled to track what the users are accessing and used in the event of a malicious attack to see where the attack originated and who preformed the attack.
Cisco released the below critical security advisory yesterday regarding a vulnerability in the SSL VPN functionality of Cisco ASA software. Contact us if you have questions or would like help with the remediation of this vulnerability.
If you don’t have Cisco Umbrella (Formerly OpenDNS) in your environment yet, you should really take a look at it. I’ve had to support on-premise solutions for URL filtering in the past and in my opinion, there are no good ones. No matter the vendor, administration tasks are more complicated than they should be, and they always add a little complexity and more points of failure in the environment. I’ve seen it several times where the security/URL filtering appliance was only in-line when running on the primary ISP connection. Or a company will have redundant ISPs but ALL traffic goes through a single appliance, creating a single point of failure. I’ve even seen an appliance set to ‘fail-open’ that should pass traffic even if the device were dead, but failed to do so when needed. This article is more about the deployment of Cisco Umbrella in our environment, so I won’t go on with all the numerous other benefits of Umbrella, suffice it to say that I am a believer in the product, and it was an enormous improvement over our previous solution.
Fireside Chats are a LookingPoint video series where we bring casual technology conversations to you! In this chat we are discussing a topic that many of our customers are talking about this year: Security and Network Visibility. Sit back, relax, and enjoy another fireside chat.
Collaboration solutions for the modern workforce are focused more and more on enabling the mobile workforce, and why should security be any different? Today’s workforce is digitizing rapidly with more and more companies’ business model reflecting trends like mobility and “bring your own device”. The exponential growth of online devices is expected to grow from 15B today to 500B by 2030. With increased digitization comes security advancements and an increased need for networks security.
Subscribe to the informative Newsletter to be Notified Updates in the Technology world.