Prevention is better than cure, which is why it’s vital for organisations to build a proactive security strategy
Ransomware attacks are incredibly stressful. Unlike previous strains that were opportunistic and small in scope, modern ransomware targets entire organisations using sophisticated tactics to encrypt, destroy and steal data with little chance of recovery.
As organisations step back and review processes, people and technology for the post-Covid world, it’s crucial to also consider the security measures in place.
Creating a security-aware team
People are a critical line of defence for businesses, and the way colleagues respond to security challenges can be the difference between ongoing resilience and a damaging cyber-attack.
Having robust controls in place and limiting access to business networks wherever possible can help reduce an attacker’s chances of breaching corporate systems.
Maintaining visibility over your IT estate
To ensure any ransomware attacks are managed and swiftly resolved, it’s crucial to keep logs and backups of critical services, files and networks. This includes logging events into a Security Information and Event Management (SIEM) system and storing this information for at least 90 days.
Ransomware is a profitable crime, so threat actors will continue to develop new ways to successfully
target organisations. As such, it’s highly likely that even more devastating attacks will occur in future using a combination of new and existing techniques, potentially including a self-propagating strain like EternalGlue and human deployment.
A leading university enlisted us to validate its cybersecurity posture
After we identified multiple improvements needed to bring the organisation’s security to the required standard, we were enlisted to design a comprehensive security package including a Managed Detection and Response (MDR) solution. The university was supporting essential research into Covid-19 and required assurance that its solution was fully secure, so the engagement was time critical. During this time, they were a prime target for a data breach due to Covid data being so valuable.
With 30,000 students across six faculties, the challenge was considerable. From previous experience in the public sector, we have learnt that securing public bodies is more complicated than other sectors.
Student bodies’ liberal expectations of information sharing need balancing with requirements to protect the university’s extremely valuable IP. A nuanced, segmented approach to risk is required. Frequently with large organisations with a user base with high turnovers, a fundamental security requirement was an accurate understanding of the enterprise deployment which could be digested by security teams.
Once baselined, the next priority was to implement a solution that could identify malicious activity at the earliest possible stage and accurately report incidents so that effective remediation could be conducted. A solution that worked equally well for on-prem and cloud architectures was also required, as the customer operates an enterprise that draws on both designs.
We designed a multi-layered solution, including an MDR suite incorporating SIEM, endpoint and network detection with a unifying service wrap centred on a SOC facility. Under our project management, the full service was deployed progressively.
The specific requirement to deploy a full network discovery and access control solution had not been delivered in the managed service model previously. However, we developed the service at pace, implementing a working solution in tandem with the other elements of MDR.
In today’s complex and ever shifting ransomware landscape, taking positive steps to protect your infrastructure can make a tangible difference. To find out more about how we can strengthen your organisation’s defences and help you build a security strategy fit for the new normal, speak to our team.
Partner Content in association with NCC Group
The pandemic has taught me how to share more – and I feel a better leader for it
As a young professional starting out in the tech sector 30 years ago, I thrived on the fast pace,constant change and demanding workload. I lived in London, Singapore and Australia…
We need to shout about our successes. Liz Fletcher on celebrating women in biotech
Throughout my career in biotechnology and life sciences, I have seen many women leading ground-breaking research studies in their fields of expertise. Yet, and I include myself in this, we…
Getting the best out of patient data is key to unlocking future health benefits in Scotland
It is important that clinicians’ voices are heard in the consultation around Scotland’s new health and care data strategy, which closes this week (12 August). Busy GPs like myself are the trusted…
How motherhood helped me be a better leader
Consider this an open letter to anyone I have worked with before I became a mother and before I fully understood how being a parent is actually a prized asset…
‘We cannot achieve our goals without entrepreneurs’ – Kate Forbes on vision for new ‘tech scaler’ network
From the very start of my ministerial career, I have had responsibility for the Scottish tech sector – and I can still say what I have said from the start,…
Finding a role in cyber was ‘tough’ for Cheryl Torano. Now she’s determined to help other women join an under-represented industry
When I decided to upskill to change careers at the age of 30 and dive into the digital world, I knew I would be starting out at the bottom of…
Why innovation and marketing are the perfect partners to make changes that matter￼
With the rapid evolution of traditional marketing and the appearance of digital marketing, technology and innovation has become part of any marketer’s life without the need of working for a…
Transitioning to a four-day week – CEO’s vow to strike a healthier balance in the workplace
I came to Scotland nearly 20 years ago from Ireland, with no contacts but a lot of determination. While Ireland will always be my home, Scotland has given me amazing…