Network Resilience: That Was Then
A former DHS cybersecurity chief mentions the need for “infrastructures that are defensible” thus moving away from proprietary and large complex networks towards a model defined by the use of field-tested solutions and the cost of maintaining these highly customized legacy networks is enormously expensive.
For years, Federal agencies focused on creating an impermeable exterior network defense, then, conventional wisdom came around to prevention.
Network Resilience: This Is Now
Today, officials are talking about network resilience as the cornerstone of the Federal cyber security posture. Phyllis Schnuck, a former head of DHS cyber security, said it best. “It’s not about prevention, it’s about resilience. When you are hacked, who’s going to come out on top?”
It’s unnerving that the Federal government would accept that large scale network breaches will happen. Yet here we are with the fact that the growing sophistication and sheer scale of cyber attacks are at a breaking point.
Network Resilience: The New Barometer
Federal IT administrators are using network resilience as the new barometer of effective cyber strategies. We all know that networks will wobble, be it from a natural disaster or malicious intent, but they collapse. If they do, they should be intelligently designed for a large scale and quick disaster recovery.
Network Resilience: Rapid Recovery
Quick disaster recovery allows infiltrated areas of a network to be quickly isolated, tracing malicious activity back to a single client in real time through visibility into your network, giving IT administrators the intelligent tools to mitigate problems quickly and effectively.
Resilience sounds like an unacceptable compromise at first. Isn’t protection of critical information the very basis of any cybersecurity mission? The reality is that there is no 100% solution in cybersecurity.
Threats are already inside our network, and more are bound to follow. The best we can do is pick our networks off the floor, dust them off, make intelligent platform changes, and send them back out there to fight another day.
SUNBURST/Solorigate Situation Briefing
BlueCat leaders discuss how the malware attack via SolarWind’s Orion platform exploited DNS and how BlueCat Edge could have helped to detect it.
January 21, 2021: Learn more about how the SUNBURST/Solorigate malware exploited DNS to execute its attack.
Customer situation brief on SUNBURST/Solorigate
Learn more about the attack via the SolarWinds Orion platform and how BlueCat products use DNS to help protect customers against compromises like it.
On the road to platform hardening, consider a STIG
Security Technical Implementation Guides standardize security configuration on networks, servers, and devices. BlueCat uses them and you can, too.