Technology Blog »

Be Secure with a Defense In-Depth Approach

Defense in-depth approach to IT Security

As information technology systems get more complex, computer Malware also gets stronger and more aggressive as does the constant onSLAught of Spear PHIshing and other email born attacks, antivirus and anti-malware are often not enough to secure your computer network so just like the layers of a police officer's bullet proof vest which has multiple layers of Kevlar to help stop a bullet from penetrating his body we have to weave multiple layers into our approach on IT security for your business or organization.

You can get viruses by opening bogus email messages, downloading unknown file attachments, and accidentally clicking ads that pop up your screen and just like the human body, a computer system can also be attacked by many viruses that can infect and disrupt computer operations and what's worse is it doesn’t just disrupt the operations of your computer, but these viruses and other malware can gather sensitive information or even gain access to other private and secured computer systems on the same network and although Computer Viruses aren't deadly, they can spread at an unimaginable rate across your entire computer system, affecting your databases, spreadsheets, Word Documents,  QuickBooks files and other critical business information systems.  This is why there is a need for this effective multi-layered security approach.

The Use of a Defense In-Depth Strategy Assures Network Security by Working on the Basis of the Following Principles:

Defenses in Multiple Places:

The use of coordinated, organized multiple security countermeasures to keep your network safe is based on the military principle that a multi-layered and complex defense is more difficult to defeat than a single-barrier protection system. The fact that many viruses can attack the network system from multiple points means that you need to deploy strong defense mechanisms at multiple locations that can endure all types of attacks.

Defense in depth focuses on areas by deploying UTM firewalls that incorporate intrusion detection that can endure active network attacks and also by providing access control on servers and host machines, to resist distribution attacks from the insiders. This multi-layered defense also protects local and area-wide communication networks from denial of service attacks.

Multiple Layered Defense:

Defense in depth is an extremely effective countermeasure strategy, because it deploys multiple layered defense mechanisms between the attacker and its targetDefense In-Depth Approach multilayered IT security defense. Each layer of the defense has a unique mechanism to withstand the virus attacks. Furthermore, you need to make sure that each layer has both detective and protective measures to ensure the security of the network.

The reason for wrapping the network with multiple layers of defense is because a single line of defense may be flawed. And the most certain way to protect your system from any attacks is to employ a series of different defenses that can be deployed to cover the gaps in the other defenses. Malware scanners, firewalls, intrusion detection systems, biometric verification and local storage encryption tools can individually serve to protect your IT resources in a way others cannot.If you’re looking to give your computer systems better protection against the harmful elements that the internet can bring, then give us a call now and we’ll have one of our associates take care of you and help defend your business.

User Education and Awareness of Common Internet Threats

The most important and what should be your first layer of defense should be education and awareness training for your employees so they can learn how to spot and identify common scams and phishing scams.  The email threat vector is the weakest in a lot of cases and most likely your most likely point of entry for a virus next to web surfing.  Your employees need to learn how to not compromise the integrity of the computer systems with potentially unhealthy computer practices. As much as possible, teach them the dos and don’ts of using the computer, as well as how they can prevent viruses and other computer malware coming in and destroying your system.

Get Away from the Break/Fix Approach to Managing  your Company's Technology - Use a Managed Service Provider

The  old practice of using an "IT Guy" to maintain your computer network is outdated and can cause more problems they then solve.  Typically something has to break or stop working before your IT guy knows about it and you receive service, resulting in an inevitable reduction in IT system performance while you wait for the problem to be fixed.

If you fall behind in keeping up with important tasks like backups, patches and security updates, the odds greatly increase that you’ll face an IT outage or another problem very quickly which often leads to substantial productivity and revenue losses which small business owners don't often take into account. 

The most noticeable  benefit of using a Managed Services Provider is since they use tools to monitor and maintain your network they can often discover and fix problems before they can negatively affect your business but they also do the hard tedious and boring work of keeping up with network monitoring, patch management, and desktop optimization performed on a regular basis which are all important parts of the Defense In-Depth security model in addition the the likelihood that your friendly neighborhood MSP has some great techniques that your IT Guy just doesn't have access to.  If you want to know more about what you can do to employ a Defense In-Depth security model contact us and we will be more than happy to help you.