The vast majority of attacks come from misuse of credentials, so your user identity access management strategy needs to be second to none. The Zero Trust framework for user identity follows the same logic as it does when securing networks and data, ‘never trust, always verify.’ Here’s how we’ve integrated this mentality into Guardicore Centra.
About Avishag Daniely
Avishag is a senior cyber security analyst at GuardiCore where she is responsible for researching customer networks and generating analysis reports as well as research regarding new system features. Avishag is a candidate for a BA in Computer Science and Middle Eastern Studies. Prior to GuardiCore Avishag held analyst and research positions in Varonis and CyberArk.
Entries by Avishag Daniely
User Identity Access Management is the next critical layer of control for the modern hybrid data center. Whatever platform your users are on, strong access management allows you to create policy that segments their permissions in the smartest way possible.
AWS WorkSpaces allow organizations to scale faster and manage complexity between hardware, VDI and Operating System management. User identity access management via smart segmentation of users gives customers visibility and control to take advantage of these benefits with security continuous throughout. Here’s how it works.
Native cloud security groups aren’t built to easily handle complex security needs such as cross-cloud application dependencies, or multi-cloud application migration. This experiment shows the roadblocks our customer came up against with native cloud tools, and how Guardicore provided a single, simple and manageable policy with a single solution.
Cloud teams know the difficulties of securing applications to cloud. Read about the process of segmenting an application in the cloud and practical limitations discovered in Azure Security Groups while simulating an application segmentation project in the cloud within multiple vNets.
Cloud teams know the difficulties of migrating applications to cloud. Read about the practical limitations discovered in Azure Security Groups and flow logs while simulating an application migration to the cloud within a single vNet.
Traditional security tools are ineffective when it comes to protecting a hybrid cloud data center. They provide ineffective controls, limited visibility and automation, and can’t keep up with today’s pace of change. In contrast, Guardicore hybrid data center security strategies are built to enable security in this hybrid environment.
We had a great time presenting at Security Field Day 2019, showing how Reveal technology is foundational for creating and enforcing flexible micro-segmentation policy. Here are some of the top questions we fielded, and a chance to check out the full presentation.
The recent attacks on the Mexican domestic payment system SPEI led to millions of dollars being stolen in incremental amounts, under the radar of the Mexican banking authorities. In hindsight, network segmentation might have made all the difference.
When making the move to AWS, you need to put security first. We look at the gaps in Amazon’s own security groups solution, and discuss how can you utilize micro-segmentation to uncover process level visibility, deploy application-aware policy, and ensure simple management of a heterogeneous environment.