Scroll Top

How the Zero-Standing Privilege Approach Helps to Keep the IT Environment Safe

How the Zero-Standing Privilege Approach Helps to Keep the IT Environment Safe
How the Zero-Standing Privilege Approach Helps to Keep the IT Environment Safe
0
NEM Feature 22/09/2022

 

Dirk Schrader, resident CISO (EMEA) and VP of security research at Netwrix

netwrix.com

The UK is in a state of cybersecurity transition. Following Britain’s exit from the European Union (EU), the country is now disengaging from the previous GDPR data security legislation of the EU. In its place comes the UK Data Reform Bill, which aims to create “new data laws to boost British business [and] protect consumers.” Within this legislative framework, as “the same high data protection standards will remain”, UK organisations must make use of best data security practices or else risk reputational fallout and possibly hefty fines. 

This transition comes at a precarious time in the state of global cybersecurity. Advanced persistent threats (APTs) are ever-evolving, and cybercriminal groups are becoming increasingly sophisticated in their methods to pilfer organisational data. In the face of these challenges, UK organisations must employ leading strategies to keep both themselves and their customers safe. Here, zero-standing privilege can play a vital role as it drastically reduces the attack surface available for cybercriminals and increases the detectability of their actions. 

What is zero-standing privilege?

As workforces continue with remote and hybrid work models, this can make organisations especially vulnerable to escalating cybercrime and open gaps in business-wide security standards. Adopting the zero-standing privilege approach helps to significantly decrease the attack surface and mitigates the risk of infiltration.  

So, what exactly is zero-standing privilege and what does its implementation entail for organisations? 

Basically, zero trust is a strategy for securing an organisation’s IT assets, including data, identities and infrastructure with data being first among equals since it is the attackers’ ultimate goal. With zero-standing privilege, access to resources from both inside and outside of the network can be restricted until the validity of the request is confirmed. Every user, regardless of who they are in the organisation, must still go through specific procedures to verify their identity to be authorised for the secure level of access they seek.

Zero-standing privilege as a policy ensures that users and services verify their credentials when gaining access to organisational resources, so it’s far harder for unauthorised users to move adjacently through targeted infrastructure right to the company sensitive data. This can be maintained by an automated process through which requesting access to databases is vetted to make sure the accessing user is not hostile on a continual basis. This approach is especially important when it comes to privileged accounts which give access to more critical resources compared to the accounts of regular users. As the right to use a resource is removed once the session is closed, there is no residual risk from standing privileges.

Many organisations use a hybrid model that combines zero-trust principles with perimeter-based protection while they work to reinforce and modernise their IT infrastructure and business processes. This subsequently leads to companies carrying zero-trust policies alongside more traditional security workflows. 

The benefits of zero-standing privilege for fast yet secure cloud adoption

For organisations looking to maintain holistic cybersecurity and facing business pressure for rapid digitalisation, the zero-standing privilege approach can bring myriad benefits. With 54% of workloads expected to be in the cloud in 2023 compared to 41% as of March 2022, it is crucial to address transitional cybersecurity risks. According to Forrester, more than three-quarters of the surveyed decision-makers cited the importance of a zero trust strategy to combat mounting security threats associated with cloud transformation and migration.

The cloud represents both an important resource and vulnerability for UK companies with research showing that 88% of organisations store sensitive data in the cloud. Of this data, 65% was personally identifiable information (PII) of customers, 42% was the PII of company employees and 31% was corporate financial information. Threats to this data were ubiquitous with 52% of surveyed companies reporting a cyberattack on their cloud infrastructure within the last 12 months. Of these attacks, phishing was the most widespread at 69% of reported incidents, followed by account compromise at 35% and targeted attacks against cloud infrastructure at 31%.

Given the oftentimes complex and interconnected nature of cloud use across enterprises, organisations might choose to use a hybrid model by implementing zero-standing privilege approach alongside more traditional security workflows.

The future lies in zero-standing privilege 

As company digital infrastructures become increasingly complicated with a greater reliance on various cloud models, and cybersecurity threats become more ubiquitous and evolved, zero-standing privilege will serve an important role for organisations looking to keep their data safe. A process of continuous verification is vital in stopping threat actors once they have gained access to the network and limiting the damage they can wreak. This approach will keep UK companies in compliance with the UK’s replacement to GDPR and will help organisations avoid damage to their reputation and significant fines that often result from a breach. 

 

 

 

Read the latest issue of Networks Europe Magazine

Related Posts

Panasas Joins MLCommons to Advance Machine Learning Storage Innovation

Panasas joins MLCommons to advance machine learning storage innovation

0
07 Sep 2022
Facing the Hidden Threats: The Increasing Importance of Cybersecurity for Utilities 

David Hall, VP Power Systems at Schneider Electric looks at the increasing importance of cybersecurity for utilities.

0
11 Jan 2023
Kao Data to Host Speechmatics’ HPC and AI Supercomputer, Expanding Deep Learning Capabilities

  Kao Data has announced it has secured a new…

0
26 Aug 2022
Eaton to Expand Collaboration with Microsoft on grid-interactive UPS technology

Eaton has announced it will expand its collaboration with Microsoft…

0
22 Aug 2022
Absolute Software Partners with Ivanti 

Absolute Software partners with Ivanti to strengthen application resiliency amidst heightened threat levels

0
30 Sep 2022
Application-Aware Networks Give a Much-Needed Edge to Enterprise Cloud By Daniel Blackwell, Pulsant https://www.pulsant.com/ A huge surge in the use of SaaS, cloud services and distributed applications followed the mass migration to hybrid working by many thousands of companies. The combination of office and remote working may once have seemed a short-term response to a crisis, but hybrid is here to stay. A McKinsey global survey of senior executives in large corporations found nine-in-ten want to continue with this modus operandi beyond the pandemic. Such major changes in the way enterprises function are only made possible by the user-friendly effectiveness of today’s ever-expanding range of well-known business applications and collaboration tools such as Slack, Dropbox, Zapier and Trello. They cannot function on their own, however. They must be underpinned by the best connectivity possible, or the whole hybrid edifice will collapse. In its research, McKinsey exposed the critical role of networks to the current success of hybrid working. It found businesses that had maintained connectivity and facilitated “microtransactions” between employees, maintained higher levels of productivity at the height of Covid restrictions. The opportunity for MSPs Hybrid has been a big transition for enterprises, but for MSPs (managed service providers), it presents new opportunities and demands. Many businesses rushed into hybrid working and are now reappraising how they extract maximum efficiency from it, recognising its permanence. They expect service providers to help them reconfigure to optimise this new approach. Managed services companies need to ensure they provide these clients with the right technologies and tools and are up-to-speed with developments in applications and infrastructure. They must facilitate the as-a-service model that their clients increasingly want, and they must focus on security, user experience and integration. Optimisation is a priority As a result of all these developments in hybrid working, the demand for infrastructure, cloud storage and compute is increasing. Gartner predicts expenditure on the public cloud will grow by more than 21% in 2022, to exceed $480 billion. Many organisations are already using multiple clouds, with Flexera’s 2021 State of the Cloud report finding enterprises use an average of 2.6 public clouds and 2.7 private clouds. This year’s Flexera report finds that enterprises already run 50% of their workloads in public clouds with the figure set to rise by 6%. This expansion of complex cloud infrastructure is becoming unwieldy, making optimisation a priority. Nearly six-in-ten respondents in this year’s Flexera report said optimising the current use of the cloud to achieve cost savings is their “top initiative”. Enterprises seek a need to see the applications on their network Since modern business and AI applications depend on fast, high-bandwidth networks, organisations must make the best use of their cloud connectivity. They must know where applications are moving throughout their infrastructure, and how best to manage and control them to deliver optimal performance. Teams collaborating through sophisticated, cloud-based design software do not want brownouts any more than participants in multi-player, immersive games. This all adds to the pressure to ensure low latency, reliability and security. In practical terms, it means focusing attention on the steps that improve network performance and use. For network operators, this dictates a shift towards application-aware networks to provide detailed reporting and intelligence to route applications down the best path. In the digital economy, application experience can make or break a business. Yet, making all applications visible to improve the end-user experience is not easy. It often takes far too long to troubleshoot and identify the root cause of a latency or performance problem and develop a resolution. The greater visibility delivered by an application-aware network, by contrast, allows businesses to understand and fix the difficulties for applications on their networks far more quickly, saving them time and the cost of traditionally complex troubleshooting processes. Security must also be high on the agenda Security is also a major concern for enterprises operating a hybrid model of work, particularly after the UK’s National Cyber Security Centre reported an increase in attacks following the pandemic-driven introduction of hybrid working. The shift to hybrid gives criminals an extended attack surface that may include hundreds of connections to employees’ homes. Many domestic networks use easily guessed or default passwords or may be configured without encryption, providing an enticing point of vulnerability for an attacker seeking access to a corporate network. Applying security policies to each remote worker to prevent such ingress can be complex and expensive. For example, applying the same policies and controls could require the deployment of a firewall at each employee’s home, which is not only costly but creates substantial management overheads. Alternatively, each employee could be provided with a remote VPN connection back to a central office location. Yet routing back through an office location hardly makes sense as organisations increasingly move to decentralised services through SaaS models and public cloud deployments. How SD-WAN makes networks application-aware Organisations now need to resolve these considerable challenges through the implementation of application-aware networks using SD-WAN technology (software-defined networking in a wide area network). This cloud-ready solution gives visibility over applications and enables organisations to control and direct traffic intelligently and securely from a central location across the WAN. SD-WAN separates the control and data planes and monitors performance, prioritising applications in line with an enterprise’s own, defined policy. Unlike traditional WAN architectures which lack the central visibility and control required for distributed IT environments, SD-WAN delivers a step change for businesses, providing the agility to configure and make changes to multiple devices at the simple push of a button, saving time and increasing efficiency. Organisations can enforce their own policy, based on user experience, with network priority given to the most business-critical applications so they avoid problems such as jitter, lag, or brownouts. And because they are able to reduce the time required for configuration and troubleshooting, businesses employing SD-WAN benefit from significant operational cost savings. Rolling out new applications becomes quicker and less costly across multiple sites. As more organisations adopt SaaS and cloud-based services, SD-WAN and application-aware networking are becoming business-critical necessities. From a security perspective, SD-WAN dovetails with the zero-trust model of security and the use of multi-factor authentication. In this approach, each network application and user must verify itself at thresholds, while the technology monitors how data moves around. It is also capable of supporting end-to-end encryption into the cloud and makes the installation of firewalls much quicker and simpler. Where edge computing fits in SD-WAN is the cornerstone of the application-aware network. By understanding the applications used across the network, organisations can classify and apply appropriate application tuning to ensure optimum performance for each user. However, application-aware networking can also work alongside an edge computing strategy to drive further efficiencies. Edge computing is where the cloud and physical data come together, where the digital and physical world intersect. It enables organisations to collect data and process it close to the end-user to create new value. Until relatively a few years ago, it would have been impossible to sustain high-speed data transfers necessary for edge applications using AI in most of the UK. The creation of edge data centres now enables organisations to run analytics locally once models have been trained on masses of data in the public cloud. These advanced capabilities open the door to industrial IoT applications such as digital twin technologies. These are the Industry 4.0 advances that reshape manufacturing and logistics operations through advanced automation, transforming the efficiency of manufacturing, extraction and refining processes, even in isolated sites. The beneficial relationship of edge and SD-WAN Edge either works independently of SD-WAN and application-aware networking or in conjunction with it to enable organisations to identify and prioritise application traffic. The latter has proved to be well-suited to the multi-cloud environment. SD-WAN in the core network of an edge platform and at the on-ramp to the public cloud will underpin high application performance for an organisation regardless of its location, overcoming any potential latency or congestion problems with the data that must be backhauled to a hyperscaler’s hub for processing. Security is significantly strengthened through monitoring and encryption between different sites. Although edge does not depend on SD-WAN, the increasing use of software to define and optimise network performance will inevitably accelerate the full operationalisation of edge computing platforms. The advantages of application-aware networks have become obvious From efficiency, optimisation and security perspectives, the gains of application-aware networks are becoming obvious. Businesses that implement or benefit from SD-WAN have access to far greater levels of application intelligence to improve connectivity, efficiency and performance. They achieve faster resolution of the network problems hindering application performance and reducing the strain placed on their workloads. All businesses with access to SD-WAN, including managed service providers, can use edge platforms to offer new levels of customer experience and service. They benefit from the operational and visibility benefits of application-aware networks and SD-WAN on the one hand, and the low latency and high bandwidth of edge computing on the other. Confident in their own performance, they can provide SLAs to guarantee that their customers enjoy consistently low latency and high reliability. This becomes possible almost regardless of the strength of their network connection. Enterprises gain considerable cost and performance advantages, deploying and updating powerful new applications almost at the push of a button. These are major advantages for service providers and enterprises alike, transforming user experience, creating value, and advancing digital transformation as the world of work continues to evolve and demand greater agility and efficiency.
Application-Aware Networks Give a Much-Needed Edge to Enterprise Cloud

Changes in the way enterprises function are only made possible by the effectiveness of today’s ever-expanding range of well-known business applications and collaboration tools. Daniel Blackwell, Pulsant discusses.

0
11 May 2022
Niels Provos Joins Lacework as Head of Security Efficacy

Former Head of Security at Stripe and Distinguished Security Engineer at Google, Niels Provos joins Lacework as Head of Security Efficacy

0
20 Mar 2023
NAKIVO Releases v10.8 with vSphere 8 Support, MSP Console and Hybrid Cloud Backup

NAKIVO releases v10.8 with vSphere 8 support, MSP Console and hybrid cloud backup

0
22 Mar 2023
Three months into 2023, what lies ahead for the IT and data centre sectors? 

As we’re now three months into the new year, Rob McKernan, President of Cloud & Service Provider Segment at Schneider Electric looks at what lies ahead for the IT and data centre sectors.

0
30 May 2023
HARTING Expands SPE Infrastructure Range

HARTING has launched an expanded range of products to support and boost its Single Pair Ethernet (SPE) infrastructure. 

0
13 Feb 2023
Data Centres of Tomorrow: The Biggest Trends for 2022
Data Centres of Tomorrow: The Biggest Trends for 2022

  Alan Hayward, Sales and Marketing Manager at SEH Technology…

0
24 Mar 2022
Moore’s Law Must Be Addressed in Data Centre Refurbishment Projects

Moore’s Law must be addressed in data centre refurbishment projects – says a sector expert at Aggreko.

0
25 Jan 2023
Increased IT Complexity Impacting ROI for 84% of IT Professionals

Increased IT complexity impacting ROI for 84% of IT professionals according to SolarWinds IT Trends Report 2022

0
28 Sep 2022
The 90-day data centre challenge

By Eaton www.eaton.com Amdocs worked with Eaton to build and…

0
23 Mar 2018
STACK Infrastructure to Expand EMEA Footprint into Frankfurt with 80MW Hyperscale Data Centre Campus 

STACK Infrastructure to expand EMEA footprint into Frankfurt with 80MW hyperscale data centre campus representing STACK’s entry into the key “FLAP” data centre market as it continues to establish a scalable presence in the region.

0
19 Jan 2023
Our website uses cookies from third party services to improve your browsing experience. Read more about this and how you can control cookies by clicking "Privacy Preferences".
Privacy Preferences
When you visit our website, it may store information through your browser from specific services, usually in form of cookies. Here you can change your privacy preferences. Please note that blocking some types of cookies may impact your experience on our website and the services we offer.
Privacy Policy
You have read and agreed to our privacy policy
Required
Privacy Policy Cookies Policy