Hello everyone,
I hope you enjoyed the presentation. To answer the question, WFH poses some significant challenges to traditional security. Trying to lock down all remote users (which is pretty much everyone now) to a specific set of IP addresses is very resource-intensive, and it's not even clear it would work. Since everyone is working remotely, it doesn't really matter where you are. For instance, I'm sitting on a deck in the Florida Keys working. Just like I'd be working at my home office in ATL.
So we believe new networking services like SASE represent a better way to provide access to a WFA (work from anywhere) reality. You can do strong authentication onto the network and then the user is routed to wherever they need to be in the most efficient fashion. I can also do a bunch of security inspection in the SASE network to enforce policies.
Automated remediation is more from a security operations standpoint and really don't depend on where the administrators are at any given time.
Feel free to expand a bit more if I didn't catch the spirit of your question.
Mike.
------------------------------
Mike Rothman
President
Securosis
------------------------------
Original Message:
Sent: Sep 15, 2020 10:53:59 AM
From: Jaclyn Parton
Subject: Q&A: Maturing Your Cloud Security
Hi All!
Week two of SECtember is upon us. Here is a link to yesterday's session, "Maturing Your Cloud Security" with @Mike Rothman of Securosis.
We had a request come through from an attendee during the session:
Tell me how the automated remediations work well in the WFH, such as the known IP address restrictions.
Any thoughts on this?
Thanks for joining us,
------------------------------
Jaclyn Parton
Marketing Coordinator
Cloud Security Alliance
Bellingham WA
------------------------------