Cloud Security

A new breed of security for the cloud generation

The enterprise is in hot pursuit of agility, collaboration, and cost-efficiencies. Cloud promises all this and more, but it also comes with new security challenges. This is because the perimeter has vanished, and it’s playing havoc when it comes to enforcing security, compliance, and governance policies.

Today’s organisations are faced with a myriad of challenges in their pursuit to secure the cloud. The average organisation believes its employees are using 452 cloud applications. However, according to a 2019 study the actual number of Shadow IT apps is nearly four times higher at 1,8071. This creates an abundance of unaccounted for corporate data in the cloud.

  • Do you know where data from your cloud apps and services resides?
  • How do you ensure that sensitive documents cannot be shared inappropriately?
  • Are your security measures robust enough to block malicious users?
  • Do you know which apps you can trust with business-critical information?

83%

Of enterprise workloads estimated to be in the cloud by 2020.1

1,700

The average number of mobile devices infected with Malware at any given time at a global 2000 organisation.2

$2.13m

The average cost of an Australian data breach.

Microsoft 365 E5 for improved security

Microsoft 365 E5 services offer customers seamless security, by reducing unwanted complexity through fewer disjointed layers, improved integration, and increased visibility. When complexity is the enemy of cybersecurity, simplicity is the ultimate sophistication.

As a familiar environment, everyone in your business can quickly learn, adapt to, and help secure your IT ecosystem without having to learn dozens of varied (and at times incompatible and competing) vendor systems.

For more information see these two blogs:

Cisco Multi-Cloud Security Solutions

Where and how people work has changed more in the last 12 months than it has in the decade prior. The applications we use to facilitate work, are evolving at a similarly rapid rate. With many applications no longer living in the controlled environment of your data centre or private cloud – instead residing with a SaaS provider – there are three key pillars needed to support this new way of working:

  • Data Backup
  • Secure access to data
  • Ongoing application performance

To keep ahead of the pace of today’s organisational and technological transformation, you need business continuity, resilience, security, and performance.

Cisco works anywhere that your data travels. Discover multi-cloud network protection with Cisco Duo Security, Cisco Umbrella, SD-WAN and HyperFlex.

Azure Sentinel SEIM

Do you have a Security Information and Event Management system (SIEM)? Do you need to ensure strict security controls and reporting within Azure and/or on-premises?

Sentinel is an Azure hosted SIEM as-a-service that can ingest and inspect security related events from virtually anywhere. Powered by advanced Artificial Intelligence and backed by security research analysis based on trillions of signals daily, Sentinel is pre-configured and ready to report on anomalous and malicious behavior within your infrastructure.

The compelling reason to select Sentinel over other SIEM services, is the elegance and simplicity of setup and configuration. Built-in data connectors can be configured in seconds to ingest data streams from Azure Active Directory, Office 365, Advanced Threat Protection (ATP), Security Center and many more.

 

Secure Access Service Edge (SASE)

SASE is the new kid on the block for network security, managed from the cloud. At its core, SASE is about shifting the focus from protecting the location of data, to protecting the user and the journey of their data.

SASE covers a range of services including SD-WAN, Zero Trust Network Access, DNS protection, Data Loss Prevention and Firewall as a Service. Wrap your head around SASE with our blog, Introducing SASE – the cloud-delivered future of network security.

One of the leading SASE solutions is Prisma Access from Palo Alto Networks.

 

Move to the cloud with confidence

Request a Shadow Data Audit today to identify the risky data and cloud apps that your employees are using.

Security without compromise

Solutions to unlock unprecedented visibility, data security and threat protection for your organisation, providing comprehensive protection for today’s cloud generation across sanctioned and unsanctioned apps.

Today, unsanctioned apps are being used across the board. As shadow IT increases, how are IT teams supposed to secure what they don’t know about? CASB solutions remove these blind spots and takes back control of Shadow IT with complete visibility into where your data resides, where data goes and who has access to it. Understand which apps to sanction, what subscriptions to streamline, and where to enforce controls.

The average enterprise is using 1,807 cloud apps –

4 times

more than they typically think.3

When it comes to employee productivity, cloud apps provide great opportunities to collaborate and innovate, but this also makes them susceptible to inadvertent sharing of confidential data. CASB solutions can identify sensitive data, monitor data at risk, encrypt sensitive content, and enforce policy controls to prevent data breaches.

62%

of employees have access to data they shouldn’t.2

As most enterprise-grade cloud apps feature built-in security features, malicious attackers are more likely to target user credentials than attempt to break through fortified architectures. Users innocently connecting with malware infected devices can also compromise data security across the wider organisation. CASB solutions use User Behaviour Analytics (UBA) and integrated malware protection to intelligently detect and block malicious activity.

59%

of people use the same or similar passwords for multiple accounts.4

The more you know about your cloud activity, the better equipped you are to protect your organisation. CASB solutions use rich log-based intelligence to quickly investigate any areas of concern, providing easily searched and filtered logs of granular cloud activity by user, app, location or more.  Data is presented graphically for fast analysis and even faster decision making.

Whilst the first generation of CASBs (CASB 1.0) helped enterprises secure their cloud, they lacked integration with existing on-premises security investments. Separate islands of security left gaps that could be exploited. CASB 2.0 solutions represents the next generation of cloud app security, which intelligently integrates with your existing security infrastructure, including DLP, endpoint management, web security, encryption, user authentication and advanced malware protection. Not only providing greater security coverage – it also reduces operational complexity and optimises the user experience. Increasingly, more organisations are turning to CASB to secure their entire enterprise.

85%

of large enterprises will use a CASB platform by 2020.5

Move to the cloud with confidence

Combining the experience of a dedicated strategic consulting team, as well as hands-on cybersecurity specialists, Data#3 has one of the most mature and highly accredited security teams in Australia. Leveraging a breadth of security solutions and a strong vendor portfolio Data#3 can help you design, implement and maintain superior security measures, tailored to protect your business.

As Microsoft’s largest Australian partner, and a Microsoft Gold Security Partner Data#3’s expert team are globally recognised as leaders in securing your environment with the Microsoft Security portfolio. Additionally, as Cisco Security Architecture Specialists, and a Gold Master Specialised Cisco Partner Data#3 implements best-in-class Cisco security solutions.

Next Steps

Everything starts with detection – if you don’t know what you have, you don’t know what you need to protect.
Contact us below to request a Shadow Data Audit to quickly identify your risky data and cloud apps.

Contact us here

1. Logicmonitor Cloud Vision 2020: The Future of the Cloud Study [Online] Available at: https://www.logicmonitor.com/blog/83-percent-of-enterprise-workloads-will-be-in-the-cloud-by-2020/
2. Ponemon Institute (2016). Closing Security Gaps to Protect Corporate Data. [Online] Available at: https://www.a51.nl/ponemon-institute-closing-security-gaps-protect-corporate-data-study-us-and-european-organizations
3. Symantec (2018). Shadow Data Report. [Online] Available at: https://data3.com/wp-content/uploads/2018/10/ShadowDataReport-2018.pdf
4. Petrillo, K (2018). Psychology of Passwords, Neglect is Helping Hackers Win. [Online] Available at:https://blog.lastpass.com/2018/05/psychology-of-passwords-neglect-is-helping-hackers-win.html
5. Gartner (2016). Market Guide for Cloud Access Security Brokers. [Online] Available at:https://www.gartner.com/doc/3488119/market-guide-cloud-access-security

Related

Q&A with the Data#3 Group Security Practice

The Data#3 group Security practice spans a national team of experienced individuals with decades of combined…

Splunk ITSI eBook
Predict and Prevent with Splunk ITSI: 6 Customer Stories

Too many alerts, too little time In Asia Pacific 69%1 of companies receive more than 5,000 threats a day –…

Feeling insecure about LDAP?

March 2020 will be a critical month for system administrators and this advisory is a must read for anyone involved…

Scott Gosling introduces Microsoft Azure technical video series
Azure Technical Deep Dive Series

With more computing environments moving to the cloud, the need for a fast, resilient and affordable cloud environment has never…