Prevention is better than cure, which is why it’s vital for organisations to build a proactive security strategy
Ransomware attacks are incredibly stressful. Unlike previous strains that were opportunistic and small in scope, modern ransomware targets entire organisations using sophisticated tactics to encrypt, destroy and steal data with little chance of recovery.
As organisations step back and review processes, people and technology for the post-Covid world, it’s crucial to also consider the security measures in place.
Creating a security-aware team
People are a critical line of defence for businesses, and the way colleagues respond to security challenges can be the difference between ongoing resilience and a damaging cyber-attack.
Having robust controls in place and limiting access to business networks wherever possible can help reduce an attacker’s chances of breaching corporate systems.
Maintaining visibility over your IT estate
To ensure any ransomware attacks are managed and swiftly resolved, it’s crucial to keep logs and backups of critical services, files and networks. This includes logging events into a Security Information and Event Management (SIEM) system and storing this information for at least 90 days.
Ransomware is a profitable crime, so threat actors will continue to develop new ways to successfully
target organisations. As such, it’s highly likely that even more devastating attacks will occur in future using a combination of new and existing techniques, potentially including a self-propagating strain like EternalGlue and human deployment.
A leading university enlisted us to validate its cybersecurity posture
After we identified multiple improvements needed to bring the organisation’s security to the required standard, we were enlisted to design a comprehensive security package including a Managed Detection and Response (MDR) solution. The university was supporting essential research into Covid-19 and required assurance that its solution was fully secure, so the engagement was time critical. During this time, they were a prime target for a data breach due to Covid data being so valuable.
With 30,000 students across six faculties, the challenge was considerable. From previous experience in the public sector, we have learnt that securing public bodies is more complicated than other sectors.
Student bodies’ liberal expectations of information sharing need balancing with requirements to protect the university’s extremely valuable IP. A nuanced, segmented approach to risk is required. Frequently with large organisations with a user base with high turnovers, a fundamental security requirement was an accurate understanding of the enterprise deployment which could be digested by security teams.
Once baselined, the next priority was to implement a solution that could identify malicious activity at the earliest possible stage and accurately report incidents so that effective remediation could be conducted. A solution that worked equally well for on-prem and cloud architectures was also required, as the customer operates an enterprise that draws on both designs.
We designed a multi-layered solution, including an MDR suite incorporating SIEM, endpoint and network detection with a unifying service wrap centred on a SOC facility. Under our project management, the full service was deployed progressively.
The specific requirement to deploy a full network discovery and access control solution had not been delivered in the managed service model previously. However, we developed the service at pace, implementing a working solution in tandem with the other elements of MDR.
In today’s complex and ever shifting ransomware landscape, taking positive steps to protect your infrastructure can make a tangible difference. To find out more about how we can strengthen your organisation’s defences and help you build a security strategy fit for the new normal, speak to our team.
Partner Content in association with NCC Group
Women Lead: The story of an entrepreneurial scientist
I first arrived in Scotland over 20 years ago. I had £75 in my wallet and a scholarship offer to do a PhD at the University of Edinburgh. Sometimes I…
Please mind the gap… or healthcare may fall
Imagine sharing a lengthy train journey with others. From beginning to end, imagine how often you might hear ‘mind the gap’ messages about embarking and disembarking safely. Picture how navigating…
Women Lead: My journey from Dragons’ Den to Silicon Valley
Following her appearance on Dragons’ Den, Sheila Hogan, serial entrepreneur, founder and chief executive of digital legacy vault, Biscuit Tin, shares her experience of her time in the Den and…
Look anywhere – the future is ‘aged tech’. But Scotland needs to be more adventurous
Scottish Care, as the representative body of independent social care providers of care home, care at home and housing support services, has been working over several years with colleagues in…
Women Lead: Engineer turned entrepreneur
We are always fascinated by other people’s stories. It’s how we connect, grow and learn from each other. Until very recently I always felt like I didn’t have a story to tell. Who…
‘Women – together we will change the dynamic in tech’
I was inspired to start a career in technology when personal computers were in their infancy and the internet decades away. My childhood dream of becoming a scientist was shaped by…
It’s time to change the future of tech apprenticeships – and we need your help
In his latest exclusive column for Futurescot, Ross Tuffee, chair of the Skills Development Scotland (SDS) Digital Economy Skills Group, calls on tech employers to get involved in shaping the…