Getting Cyber Security tools in place is only the first piece of the puzzle. An important piece, yes, but just the first. Having tools like Endpoint Protection, a Firewall, or Multi-Factor Authentication put in place is only good if you are leveraging them. Having a hammer and saw in a workshop doesn’t create furniture by itself, so why should just having a firewall create a secure environment? Those tools need to be used properly and vigorously to produce anything meaningful. This is true of any discipline. And like any discipline, it takes time and knowledge.
While it’s true that many Cyber Security tools come with pre-programmed settings “out of the box” that will protect you better than having nothing, I’ve yet to see a tool that can be everything to everyone at all times. Every organization and every network is unique. So setting up and then properly managing those tools is vital to security. And it’s not just a “set it and forget” situation either. We must be vigilant in maintaining our security posture.
Here’s an example. About a year ago, there was a break out of a new malware. Popped up what seemed like overnight. It was wreaking havoc among organizations all over the world. Getting past firewalls and infecting the networks with ransomware. It did this by taking advantage of a vulnerability in the vast majority of default settings on manufacturers firewalls. The defense against this was simply to identify that vulnerability and resolve it. However, once the ransomware got through, it was too late! If organizations had been vigilant, and recognized that vulnerability, there would be no issue.
We have a service here at JSCM Group, ClosedPort: Firewall. We maintain, manage, and update our clients firewalls, regardless of manufacturer. It’s a service we’re quietly proud of, and frankly, are very good at. We have several firewall experts that manage this service, and take care of our clients through proactive security measures like regular policy reviews, firmware and patch management, and always applying best practices for the firewalls under our care.
None of our clients were victims of this ransomware. Why? We had already identified the vulnerability months before the ransomware existed. We know the tools. We know how to get the most out of them. And it saved our clients hundreds of thousands of dollars.
Whether you are using a service like ClosedPort: Firewall, or take classes on your tools, make sure you’re getting the most out of what you’ve purchased. You’ve already put the investment into the tools themselves, so make sure that you’re protecting your network as best as you can with them. And never, ever, set it and forget it.