Is It Time To Consolidate Systems?

Uploaded on 2022-11-03 in FREE TO VIEW, BUSINESS-Services-IT & Telecoms, TECHNOLOGY--Resilience

In the world of HiFi, there has always been the debate around individual components verses a combined system. The former, site selecting the optimum individual unit for a specific role, is best, it will ensure the ultimate results in HiFi quality. It can, however, be complex to marry together, and other units, such as a graphic equaliser to balance the sound, may be required.  

In the end, you have a system which may have good sound, but do you really appreciate it and have the time to tweak it, when you play different genres of music?
 
This conundrum gave birth to the integrated HiFi unit. They were uniform systems that stacked neatly on top of each other, had pre-set buttons for sound effects (pop, rock, theatre etc.) and had reasonable sound quality for the average room.
 
The data security world is in the same position as the component HiFi was, back in the day. The current reality is, that rather than reducing complexity, too many businesses are managing multiple point products, incompatible dashboards, and struggling to integrate new systems with existing defences.

This applies to all size of business but is especially hard for a mid-size enterprise, where resources are stretched and the skills needed to truly understand the information that is being presented, simply not there.

A new solution, identified by Gartner, is Security Service Edge (SSE) which is emerging to reduce complexity and improve detection and response, all in one integrated system, much like in the HiFi world.  According to Gartner, “SSE secures access to the web, private applications, and usage of cloud services. Capabilities include access control, threat protection, data security, security monitoring and acceptable use control, enforced by network-based and API-based integration”.
 
The SSE approach relieves the pressure on IT teams by integrating security from a single cloud-based platform, vital for all businesses but especially those in the mid-sized arena.
 
As Gartner notes, “vendors are increasingly divided into ‘platform’ and ‘portfolio’ camps, with the former integrating tools to make a whole that’s greater than the sum of the parts, and the latter packaging products with little integration. “As the platforms shift to the cloud for management, analysis and even delivery, the ability to leverage the shared responsibility model for security brings enormous benefits to the business”.
 
When looking for a solution, Gartner suggests:

  • That differentiating between these approaches is key to the efficiency of the suite.
  • Look at how integrated the consoles are for the management and monitoring of the consolidated platform.
  • Assess how security elements can be reused without being redefined or can apply across multiple areas seamlessly.   

An autonomous, integrated security platform has the capacity to tackle evolving threats, right across an organisation’s attack surface, round-the-clock and, at lightning speed.  Operating a single platform means all your security functions can share relevant data in a single, transparent dashboard, improving speed and accuracy of response and reporting, while helping to mitigate against cross-channel attacks and eliminate complexity.
 
SSE Platforms Have Some Key Benefits:

Enables Investment in the right security solutions at the right time:   Unlike combined HiFi systems modern SSE platforms allow you to build part by part, allowing you to consider whether you can consolidate defences and connect email, web and cloud security with identity and context – so there are no weak spots to target.

Eradicate complexity:    Instead of managing multiple point products and ploughing time or effort into supporting legacy solutions like VPNs, MPLS and WAF deployments, embrace cloud native security that ensure updates can be applied without the need for manual intervention.

Create your own rules:   Ensure you can pre-define what can act autonomously and what cannot. Create your own rules based on thousands of attack scenarios for machine speed response to enhance protection.

Gain visibility of threats across your entire ecosystem:   Stop cross-channel attacks from occurring with shared attack intelligence. Leverage in-built threat intelligence feeds to proactively stop attacks even entering the kill-chain.

Autonomous integration:   Enable cyber defences to work together, untouched by human hand, with full API provisioning and management.
 
The SSE approach enables organisations to move away from the more expensive and time-consuming approach of running separate solutions in silos. Instead, it gives companies an integrated approach that is simpler to use, easier to manage and, reduces the need for manual intervention.
 
Crucially, a platform approach enables digital business, giving users the freedom to access the applications and data they need, regardless of device or location, whilst providing visibility of threats and the tools to remove them to the IT team, to make better use their time.
 
Colin Tankard is Managing Director of Digital Pathways

You Might Also Read:

Is Your Anti-Virus Doing Its Job?:

 

« The Do’s and Don’ts Of Security Risk Management
Leveraging Data Privacy For Artificial Intelligence »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

King & Spalding

King & Spalding

King & Spalding is an international law firm with offices in the United States, Europe and the Middle East. Practice areas include Data, Privacy & Security.

IBackup

IBackup

IBackup is a Web Based Online Backup service provider.

Be Cyber Aware At Sea

Be Cyber Aware At Sea

Be Cyber Aware At Sea is a global maritime and offshore industry initiative to raise awareness and educate crew members and the offshore workforce.

Nexcom International

Nexcom International

Nexcom operates six global businesses - IoT Automation, Intelligent Digital Security, Internet of Things, Intelligent Platform & Services, Mobile Computing Solutions, Network & Communications.

PureCyber

PureCyber

PureCyber (formerly Wolfberry Cyber) is an award-winning cyber security consultancy whose goal it is to make cyber security accessible, understandable, and affordable for any organisation.

Prolimax

Prolimax

Prolimax deliver innovative solutions to IT Manufacturers, Distributors, Resellers and End-users including Data Erasure and secure IT Asset Disposition (ITAD)

DivvyCloud

DivvyCloud

DivvyCloud protects your cloud and container environments from misconfigurations, policy violations, threats, and IAM challenges.

ForAllSecure

ForAllSecure

ForAllSecure’s mission is to make the world’s software safe by pioneering autonomous cybersecurity tools that automatically find and fix vulnerabilities in run-time executable software.

InfoExpress

InfoExpress

InfoExpress provides network security solutions that enhance productivity and security through better visibility, improved security, and automating device and mobile access to the network.

Prosperoware

Prosperoware

Prosperoware develop software for cybersecurity, privacy, and regulatory compliance for content systems, and financial matter management.

Allentis

Allentis

Allentis provide adapted solutions to ensure the security and performance of your information system.

FoxTech

FoxTech

FoxTech is an independent, friendly and deeply specialised cyber security company in the UK, with expertise spanning decades of Public Sector and Government services.

Asimily

Asimily

Asimily’s IoMT risk remediation platform holistically secures the mission-critical healthcare devices that deliver safe and reliable care.

Digistor

Digistor

Digistor is a leading manufacturer of industrial-grade flash storage products, secure storage products, and Removable Secure Data Storage.

Oxeye

Oxeye

Oxeye fills the gap between cloud and code to show exploitable vulnerabilities, and their path from API to code. More visibility. Less noise. More time to build.

Flare Systems

Flare Systems

Flare proactively detects and remediates exposure across the clear & dark web, providing organizations with the equivalent of an automated cyber reconnaissance team.