Jan-Feb-Mar 2021

NETWORKcomputing
I N F O R M A T I O N A N D C O M M U N I C A T I O N S – N E T W O R K E D www.networkcomputing.co.uk
A BREACH TOO FAR?
Counting the cost of a financial data breach
5G MIGRATION
Preparing your IP network
infrastructure for the 5G era
THE IT FACTOR
What traits should you
look for in an IT vendor?
DATA LOCKDOWN
Leveraging data insights for
digital transformation
JANUARY/FEBRUARY 2021 VOL 30 NO 01

The Global Leader in Technical Education
for the Digital Infrastructure Industry
Mountain
Daylight /
Standard
Time
Eastern
Daylight /
Standard
Time
Pacific
Daylight /
Standard
Time
Professional Network Infrastructure and Data
Centre Technical Education Across the World
Keeping Education Accessible
Reaching the world with live and fully
interactive classroom learning remotely.
Providing complete flexibility with
distance learning programs.
Supporting the Industry
every way we can.
Central
Daylight /
Standard
Time
British
Summer
Time
Gulf
Standard
Time
Indian
Standard
Time
Greenwich
Mean Time
Singapore
Standard
Time
Australian
Eastern
Daylight /
Standard
Time
South
African
Standard
Time
CNet Training has been designing and delivering technical education since 1996 and is the originator of the
highly acclaimed Global Digital Infrastructure Education Framework, comprising technical education
programs throughout the data center and network infrastructure sectors. Today CNet delivers programs in many
ways to support learners across the world. CNet’s live and fully interactive remote classroom learning is popular
and distance learning programs provide completely flexible learning. CNet remains the only industry dedicated
technical education provider in the world to award both industry recognised qualifications and official
certifications.
Advancing Data
Center Professionals
CORPORATE
PARTNER
info@cnet-training.com +44 (0)1284 767100 cnet-training.com

COMMENT
COMMENT
A DATA DAY TO REMEMBER
At the time of writing it's the 15th Data Privacy Day, and with so many of us now
working from home during the pandemic it's never been more timely. As Simon
Marchand, Chief Fraud Prevention Officer at Nuance obseves, "The sad truth is that
fraudsters don't stop their crimes because of a pandemic. In fact, they often seize the
immense change that comes with an event like this (Covid-19) to ramp up their activity -
targeting individuals and businesses whilst they are at their most vulnerable and least protected
in order to manipulate their data and steal their personal information."
For Simon the answer is to layer biometrics into your data protection strategy: "With voice
biometrics able to leverage more than 1000 unique speech characteristics - from pronunciation
to the size and shape of your nasal passage - and behavioural biometrics measuring
minute details, such as how a person holds their phone or even how they pause once they
finish a task, systems that incorporate them are considerably less susceptible to hacking."
Peter Lefkowitz, chief privacy and digital risk officer at Citrix, believes that the shift to
working from home requires a major re-evaluation of our data policies: "Most enterprise
policies are designed to protect data and apply physical and technical safeguards within
the enterprise, not the minimum-security environment of workers' homes. To address this,
organisations must evolve their capabilities beyond the current model of controlling sensitive
data distribution, which is heavily dependent on access rights, workers' actions (or inactions),
and flagging compliance-impacting events after they've happened. And with IoT and
analytics expanding our concept of sensitive data - by type, volume, depth and meaning -
the need for a more encompassing approach is more urgent than ever."
To this end we have several articles this issue that take a closer look at how we can make
the most of our data, while protecting it from a costly security breach. First, Peter Ruffley,
CEO at Zizo, explains the importance of data to a successful digital transformation strategy,
and why it will require change on a personnel, cultural and technological level. Then
we have Andrea Babbs, UK General Manager at VIPRE, detailing how organisations in the
financial sector can safeguard both their data and reputation by adopting a layered cybersecurity
strategy.
As we continue to 'WFH' during lockdown this year's Data Privacy Day is a reminder that
our data obligations now reach well beyond the confines of the office. NC
REVIEWS:
Dave Mitchell
DEPUTY EDITOR: Mark Lyward
(netcomputing@btc.co.uk)
PRODUCTION: Abby Penn
(abby.penn@btc.co.uk)
DESIGN: Ian Collis
(ian.collis@btc.co.uk
SALES:
David Bonner
(david.bonner@btc.co.uk)
Julie Cornish
(julie.cornish@btc.co.uk)
SUBSCRIPTIONS: Christina Willis
(christina.willis@btc.co.uk)
PUBLISHER: John Jageurs
(john.jageurs@btc.co.uk)
Published by Barrow & Thompkins
Connexion Ltd (BTC)
35 Station Square,
Petts Wood, Kent, BR5 1LZ
Tel: +44 (0)1689 616 000
Fax: +44 (0)1689 82 66 22
SUBSCRIPTIONS:
UK £35/year, £60/two years,
£80/three years;
Europe:
£48/year, £85/two years £127/three years;
ROW:
£62/year, £115/two years, £168/three years;
Subscribers get SPECIAL OFFERS — see subscriptions
advertisement; Single copies of
Network Computing can be bought for £8;
(including postage & packing).
© 2021 Barrow & Thompkins
Connexion Ltd.
All rights reserved.
No part of the magazine may be
reproduced without prior consent, in
writing, from the publisher.
GET FUTURE COPIES FREE
BY REGISTERING ONLINE AT
WWW.NETWORKCOMPUTING.CO.UK/REGISTER
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 03

CONTENTS
CONTENTS
J A N U A R Y / F E B R U A R Y 2 0 2 1
OBJECT STORAGE TO TAPE...8
How does Fujifilm's Software-defined Tape
meet archiving requirements whilst adapting
to the specific features of object storage?
COMMENT.....................................3
A data day to remember
INDUSTRY NEWS.............................6
The latest networking news
ARTICLES
A BREACH TOO FAR?......................10
By Andrea Babbs at VIPRE
A CONSUMER-GRADE SECURITY
EXPERIENCE.........................................12
By Fiona Boyd at Fujitsu
ZERO TRUST....................................14
By Ved Zen at TCS
A BREACH TOO FAR?..........10
How can financial services organisations keep
their confidential information secure to
safeguard their data and reputation? Andrea
Babbs, UK General Manager, VIPRE, explains
THE IT FACTOR....................20
Vikki Durden, Head of Operations at UK IT
Service, discusses the traits businesses should
search for in a potential I.T. vendor - and the
ones they should seek to avoid
FROM DATA LOCKDOWN TO
DIGITAL TRANSFORMATION...16
Businesses need insight, not just data, when
it comes to digital transformation, according
to Peter Ruffley at Zizo
THE WINNERS HAVE
(VIRTUALLY) ARRIVED!............27
Find out more about the winners of the
2020 Network Computing Awards, which
were held online due to the ongoing
Covid-19 pandemic
FROM DATA LOCKDOWN TO
DIGITAL TRANSFORMATION...........16
By Peter Ruffley at Zizo
PREPARING NETWORK INFRASTRUCTURE
FOR THE 5G ERA.................................18
By Vincentas Grinius at IPXO
HOW APIS ARE SHAPING THE NEW
WORKPLACE...................................19
By James Hirst at Tyk
THE IT FACTOR...............................20
By Vikki Durden at UK IT Service
A FORWARD-LOOKING GUIDE TO
BUYING IT EQUIPMENT FOR SMES...22
By Simon Michie at Pulsant
RANSOMWARE: NEW YEAR,
NEW THREATS................................24
By Veniamin Simonov at NAKIVO
CASE STUDY
A BRIGHTER OUTLOOK...................26
The Brightstar Group turned to Babble to
futureproof its telephony platform and
ensure ongoing business resilience
PRODUCT REVIEW
SOLARWINDS DATABASE
PERFORMANCE ANALYZER.................13
04 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

INDUSTRYNEWS
NEWSNEWS
NEWS NEWS
NEWS NEWS NEWS NEWS
NEWS NEWS
BT and University of Warwick enter 5G collaboration
University of Warwick and Warwickshire County Council are
collaborating to bring 5G innovation and co-development
to the University campus and the wider region, stimulating
regional economic growth and post Covid-19 recovery. This
innovation alliance has enabled BT to switch on the UK's first
dedicated public 5G network for a connected campus,
bringing ultrafast 5G mobile coverage to University students,
staff and visitors across the 720-acre site and to people in
surrounding areas through its EE mobile network.
The installation of a public 5G cell site on University of
Warwick's main campus will mark the university as an early
adopter of 5G technology and a testbed for research, industry
and consumer 5G use case development. As a leading
research University with over 30,000 students and staff, EE's
public 5G network will further enhance Warwick's research and
student learning and experience whilst also bringing 5G's
faster speeds, reliability and response times to people in
neighbouring areas.
Working From Home IT support launched
London IT support provider Totality Services has launched
WFH IT Support to service the millions of workers affected by
the latest lockdown regulations. The new offering has been
launched with the aim of offering teams of all sizes the level of
IT security and support previously reserved for large officebased
operations, servicing the needs of the nation's work from
home employees.
WFH IT Support offers a full IT support package to businesses
with displaced workers working remotely or from home on a
rolling monthly contract starting at £14.99 per machine, per
month. The new offering works in partnership with Mimecast,
and businesses signed up to WFH IT Support will also have
access to 100% secure hard disk encryption, which works
alongside DNS protection to fend off 'man in the middle' attacks.
Boosting productivity during the pandemic
UK firms are investing in digital infrastructure to boost their
productivity during the Covid-19 pandemic, according to
research from Brother UK. The findings, taken from interviews
with 500 IT decision makers, show that more than eight in ten
(84%) companies have ramped-up efforts to boost productivity
since March, with more than half saying it is now vital to deliver
cost savings (59%) and higher profits (54%) for their businesses.
Respondents said that legacy working practices (35%), such as
excessive meetings, and poor IT infrastructure (33%) are the
biggest barriers businesses face. Modern hardware, such as
printers and tablets, (98%), collaboration software, such as
project management platforms and video conferencing, (98%),
and remote working tools, such as cloud-based technologies,
(96%), top IT decision makers' lists for technology that will
deliver the greatest productivity gains. Brother says that an
average business of 250 employees could stand to save nearly
52,000 hours of workers' time a year - worth an estimated
£776,000 - just by implementing simple, cost effective updates
across their IT operations.
Five UK tech and network providers head to North
Five pioneering UK technology, networking and safety & security
providers have come together to form a new company with
ambitious growth plans, having secured a £30m plus forward
order book since the Covid-19 emergency began. Glasgowbased
Boston Networks, Wales-based Pinacl and Pinacl GDA,
North Shields and Birmingham-based 2020 Vision Systems and
London-based PEL Services have united to rebrand as North. The
five companies had been brought together via a series of
acquisitions and mergers, as part of the specialist investment fund
Aliter Capital's strategy to build a modern and progressive network
infrastructure, smart buildings, IoT and safety and security
business, delivering innovative and specialist services to its clients.
1 in 4 pen tests reveal critical IT weaknesses
Penetration test data from 2020 has revealed that critical flaws
found in business infrastructure and applications have
increased since the previous year (where it was 1 in 5), with underinvestment
in cyber defences and lack of security culture cited as
the main causes. This is according to the 2021 Cyber Security
Industry Report 2021 from Bulletproof. The report reveals that
attackers continue to take advantage of the current global crisis by
targeting organisations with poor security, using tried and tested
techniques well understood by the security industry.
06 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

INDUSTRYNEWS
By analysing data from penetration tests and proactive monitoring,
as well as compliance insights and research, Bulletproof identified
that intelligence is often not good enough and provides a false
sense of security. Remote workers are at a higher risk of falling
victim to phishing campaigns as attackers have increased their use
of this tactic and been successful. Key findings include:
• Out of 9,000 IP addresses identified as belonging to bad actors
hitting the honeypot, only 158 (1.7%) were in the top commercial
and open-source threat intelligence feeds
• Critical flaws found during penetration tests has increased since
last year, suggesting security is still uninvested and/or misunderstood
• Bulletproof's penetration testing activities uncovered an
increasing trend of homogenisation in underlying web
technologies, presenting often overlooked risks to businesses
• 33% of companies have out of date systems, validated by the
penetration test statistics which show 32% of companies are
vulnerable due to out of date components
• 23% of companies are failing audits due to endpoint malware
protection tests, raising concerns for businesses with remote workers
Connexin to launch UK's first IoT network nationwide
Connexin has announced that it will expand its IoT network
nationwide, providing carrier-grade roaming long range
wide area networks (LoRaWAN) connectivity and infrastructure to
customers all over the UK for the first time. The new national low
cost wide-area network rollout lead by Connexin is a strategic
investment aimed at supporting the increasing demand for smart
networks throughout the UK. The universal connectivity will lower
the barriers to entry and better enable every type of organisation
across the UK to adopt IoT solutions to provide further insights
that will address future challenges, promote a better quality of
life and create environmental improvements for all.
"With a low cost wide-area networking solution becoming
available to all organisations across the UK, it opens up
opportunities for those looking to deploy IoT solutions for a
fraction of the cost of existing cellular infrastructure solutions,"
said Furqan Alamgir, Founder & CEO of Connexin. "Not only
does this promote the development of new IoT-based technology
but it allows existing solutions to be rolled-out nationwide to
encourage further adoption and will allow more people to utilise
and benefit from affordable, carrier-grade IoT connectivity."
KnowBe4 launches new PhishER Security Roles
KnowBe4 has launched a new email security feature,
PhishER Security Roles, making the company PhishER email
quarantine security measures more efficient. It allows
cybersecurity professionals to assign custom permissions for
the exact incident response roles and responsibilities that they
need in their organisations. Therefore, each member of the
security team handles an email analysis component that best
suits their skillset.
"With phishing attacks continuing to escalate, sophisticated
features for defence tools like PhishER are needed to combat
these ever-present threats," said Stu Sjouwerman, CEO,
KnowBe4. "Having a way to determine specific roles across
security teams will strengthen defences and help each person
better manage their workload as it continues to grow."
New Netgear multi-gig switches are ready for WiFi 6
Netgear has announced the availability of the MS510TXM
and MS510TXUP multi-gig switches. These innovative
switches support speeds up to 10G and have optional cloud
management. The MS510TXUP Ultra60 PoE++ model
additionally supports up to 60 Watts of PoE power on each port.
The new multi-gig offerings can connect devices at a multitude
of speeds for sustained end-to-end performance. Each port on
the MS510TXM or MS510TXUP can auto-negotiate to speeds
of 100Mb, 1G, 2.5G, 5G or 10G, thus enabling WiFi access
points, network attached storage systems, servers, and IoT
devices to be connected at the most optimal speed.
The MS510TXM and MS510TXUP are suited for businesses
wanting to improve their WiFi performance with a network of
WiFi 6 Access Points (such as NETGEAR’s newly announced
WAX610 or WAX218, both of which support communication
speeds of 2.5G). With these new switches, speeds of up to
5G can be achieved with CAT 5E, thus protecting a
business’s investment in cable infrastructure. The MS510TXM
is available now priced at £429.99, with the MS510TXUP
priced at £579.99
NEWS NEWSNEWS
NEWS
NEWS NEWS NEWS NEWS NEWS
NEWS
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 07

FEATURE
OBJECT STORAGE TO TAPE
THE DIGITAL DATA EXPLOSION, INCREASING REGULATIONS FOR THE LONG-TERM RETENTION OF DATA
AND THE RISK OF CYBER-ATTACKS: HOW DOES FUJIFILM'S SOFTWARE-DEFINED TAPE MEET ARCHIVING
REQUIREMENTS WHILST ADAPTING TO THE SPECIFIC FEATURES OF OBJECT STORAGE?
be grouped within archival folders or in tartype
containers, for example.
Tape drives have special tools designed to
mitigate this phenomenon such as the
buffer, which is effective for files over
500MB and IBM's Skip Sync system for files
between 200MB and 500MB. Nevertheless,
writing a large number of very small files will
slow down backup operations. This can
result in a drop in operating speed below
10-15MB/s on an LTO drive and even
below 5MB/s on disk.
Fujifilm has launched an archiving
software specially designed for writing
objects on tape: Software-defined
Tape. It operates as an S3 gateway between
an object storage solution and a tape
system. With its record writing speed and
high flexibility, the software is compatible
with a wide range of capacities. It can carry
up to several hundred PBs and achieves an
operational transfer rate of 205MB/s for
10MB files, which is 10 times faster than
regular tape systems and 20 times faster
than hard drives.
This software allows the user to install their
own private Glacier-type cloud on-premise,
while strengthening the level of data security
and optimising storage costs.
THE HOLY GRAIL OF DATA STORAGE
Fujifilm continuously explores new fields to
make tape more efficient and user friendly.
Whilst addressing the question of object
storage, they solved the fundamental
question facing all storage technologies:
write speed. When backing up a large
number of small files, the write speed can
be affected and system downtime can also
occur. This is exacerbated as the file sizes
decrease.
The linear structure of object storage
makes this even more significant because
each object is saved individually. As a result,
the deterioration of speed can be more
severe. This is contrary to a traditional file
system, which by its structure allows files to
In order to solve the problem of write
speed, the principle of Software-defined
Tape is to prevent the accumulation of write
stops between small files. The software
groups the objects into packs before storing
them on tape. It generates a "single 1GB to
10GB file" which is written to tape in one
stroke. The OTFormat, the new tape writing
technology developed by Fujifilm, makes it
possible to write these packed objects to
tape and significantly reduces the number of
write stops. Software-defined Tape succeeds
in maintaining a spectacular 205MB/s
transfer rate for the back-up of 10MB files.
FUJIFILM CHOSE THE POPULAR AND
EASY-TO-USE S3 INTERFACE
In order to facilitate the communication
between tape systems and the largest
number of object storage solutions,
Software-defined Tape uses the native S3
and S3 Glacier protocols. The S3
protocol, already widely adopted by object
storage solutions, has become the
standard for the transmission of objects. It
is a free and open data transfer protocol.
Furthermore, the publication of its APIs
makes it easy to program. In this way, the
popularity of Amazon's cloud services and
08 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

FEATURE
TS1160 3592 drives and with LTO9 later in
the same year.
When it comes to hardware brands,
Fujifilm software is agnostic and works with
most of the libraries available on the
market, from the 280 slot IBM TS4300
library to several IBM TS4500 libraries each
operating up to 23,700 LTO slots. This also
gives users the freedom to choose their
servers provided they match the necessary
performance requirements.
the availability of the S3 APIs motivate the
software manufacturers and the users to
implement them within their solutions and
infrastructures. The S3 Glacier protocol
allows the users to seamlessly restore their
objects from tape to their object based
disk storage.
INCREASED SECURITY FOR DATA
AND METADATA
Losing metadata can seriously affect
access to data. As a result, Fujifilm has
chosen to focus on metadata protection
alongside all the specific features of object
storage. Metadata is used as search
criteria to find the objects that need to be
restored. Without metadata, it is difficult
and sometimes even impossible to know
which object corresponds to which data. In
such cases, accessing data can be very
problematic.
In addition to the copy of metadata kept
on the server, Software-defined Tape
systematically and automatically commands
the writing of four copies of metadata on the
same tape as the data. The metadata
benefits, as does the data, from all the
advantages of tape in aspects of security:
protection against viruses and hackers, a
data integrity 10,000 times higher than that
of hard disk, an archive life of over 30 years
and seven times longer than on hard disk,
which is weakened by its many mechanical
parts. These are just a few of the advantages
of tape over other storage technologies.
For the users' peace of mind, Softwaredefined
Tape adapts to all capacities up to
several hundred Petabytes The Softwaredefined
Tape system scalability and the
software subscription scheme flexibility
contribute to Fujifilm's quest for simplicity. It
supports up to 128 billion objects, 64
servers and 256 tape drives. Softwaredefined
Tape is compatible with LTO7 and
LTO8 drives. In early 2021 it will be
compatible with the IBM TS1155 and
The software subscription scheme is based
on both the archiving capacity and the
length of the contract. Its flexibility enables
the user to cover any unexpected data
growth. The software license includes the
number of tapes required to write from one
to three copies according to the user’s own
choice. Software-defined tape automatically
and simultaneously, performs these copies.
For a 10PB subscription over a 5-year
period, two sets of data are included (one
copy), as standard and 1,700 LTO8 tapes,
that is to say 20PB of tapes, will be provided
with the software.
Furthermore, for the user’s convenience,
Fujifilm has added features which enable
them to manage their archives directly from
the object storage application GUI. This
ensures the operational continuity through a
path-failover system.
The philosophy of this archiving software
can be summarised by Fujifilm's strong
desire to make life easier for the users.
Software-defined Tape meets both the
specific challenges raised by object storage
and the companies’ high requirements in
the field of long-term data retention,
especially in matters of data security and
cost optimisation. Indeed, the total cost of
using tape is, on average, 5 times lower
than hard disk, in particular due to its low
ecological footprint. To go a step further we
can say that Fujifilm leveraged its first leap
into archiving software in order to
revolutionise the issue of write speed. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 09

OPINION
ADDING UP THE COSTS OF A FINANCIAL DATA BREACH
HOW CAN FINANCIAL
SERVICES ORGANISATIONS
KEEP THEIR CONFIDENTIAL
INFORMATION SECURE TO
SAFEGUARD THEIR DATA AND
REPUTATION? ANDREA BABBS,
UK GENERAL MANAGER,
VIPRE, EXPLAINS.
Reliance on email as a fundamental
function of business communication
has been in place for some time.
But as remote working has become a key
factor for the majority of business during
2020, it's arguably more important than
ever as a communication tool. The fact
that roughly 206.4 billion emails are sent
and received each day means we're all
very familiar with that dreaded feeling of
sending an email with typos, with the
wrong attachment, or to the wrong
contact. But this can be more than just an
embarrassing mistake - the ramifications
could, in fact, be catastrophic.
In particular, for the financial services
industry that deals with highly sensitive
information including monetary
transactions and financial data, the
consequences of this information falling
into the wrong hands could mean the loss
of significant sums of money. Emails of
this nature are the Holy Grail for cyber
criminals.
HOW MUCH?
According to research from Ponemon
Institute in its Cost of a Data Breach
Report 2020, organisations spend an
average of $3.85 million recovering from
security incidents, with the usual time to
identify and contain a breach being 280
days. Accenture's 2019 Ninth Annual
Cost of Cybercrime report found that
financial services incurred the highest
cybercrime costs of all industries. And
while examples of external threats seem to
make the headlines, such the Capital
One cyber incident, unintentional or
10 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION
insider breaches don't always garner as
much attention. Yet they are both as
dangerous as each other. In fact, human
errors (including misdeliveries via email)
are almost twice as likely to result in a
confirmed data disclosure.
Costs will be wide ranging depending on
the scale of each breach, but at a
minimum there will be financial penalties,
costs for audits to understand why the
incident happened and what additional
protocols and solutions need to be
implemented to prevent it from happening
in the future. There could also be huge
costs involved for reimbursing customers
who may have been affected by the
breach in turn.
PRICELESS DAMAGE
The fallout from data breaches goes far
beyond that of financial penalties and
costs. Financial services businesses have
reputations to uphold in order to maintain
a loyal customer base. Those that fail to
protect their customers' sensitive
information will have to manage the
negative press and mistrust from existing
and potential customers that could
seriously impede the organisation as a
whole. Within such a highly competitive
market, it doesn't take much for customers
to take their money elsewhere - customer
service and reputation is everything.
CHECK, PLEASE!
Within the financial services sector, the
stakes are high, so an effective, layered
cybersecurity strategy is essential to
mitigate risk and keep sensitive
information secure. With this, there are
three critical components that must be
considered:
1. Authentication and encryption:
Hackers may try to attack systems
directly or intercept emails via an
insecure transport link. Security
protocols are designed to prevent
most instances of unauthorised
interception, content modification and
email spoofing. Adding a dedicated
email to email encryption service to
your email security arsenal increases
your protection in this area. Encryption
and authentication, however, do not
safeguard you against human errors
and misdeliveries.
2. Policies and training: Security
guidelines and rules regarding the
circulation and storage of sensitive
financial information are essential, as
well as clear steps to follow when a
security incident happens. Employees
must undergo cyber security
awareness training when they join the
organisation and then be enrolled in
an ongoing programme with quarterly
or monthly short, informative sessions.
This training should also incorporate
ongoing phishing simulations, as well
as simulated phishing attacks to
demonstrate to users how these
incidents can appear, and educate
them on how to spot and flag them
accordingly. Moreover, automated
phishing simulations can also provide
key metrics and reports on how users
are improving in their training. This
reinforcement of the security
messaging, working in tandem with
simulated phishing attacks ensures
that everyone is capable of spotting a
phishing scam or knows how to
handle sensitive information as they
are aware and reminded regularly of
the risks involved.
3. Data loss prevention (DLP): DLP
solutions enable the firm to implement
security measures for the detection,
control and prevention of risky email
sending behaviours. Fully technical
solutions such as machine learning
can go so far to prevent breaches, but
it is only the human element that can
truly decipher between what is safe to
send, and what is not. In practice,
machine learning will either stop
everything from being sent - becoming
more of a nuisance than support to
users - or it will stop nothing. Rather
than disabling time saving features
such as autocomplete to prevent
employees from becoming complacent
when it comes to selecting the right
email recipient, DLP solutions do not
impede the working practices of users
but instead give them a critical second
chance to double check.
It is this double check that can be the
critical factor in an organisation's
cybersecurity efforts. Users can be
prompted based on several parameters
that can be specified. For example,
colleagues in different departments
exchanging confidential documents with
each other and external suppliers means
that the TO and CC fields are likely to
have multiple recipients in them. A simple
incorrect email address, or a cleverly
disguised spoofed email cropping up with
emails going back and forth is likely to be
missed without a tool in place to highlight
this to the user, to give them a chance to
double check the accuracy of email
recipients and the contents of attachments.
CONCLUSION
Email remains a risky, yet essential tool for
every business. But with a layered security
strategy in place consisting of training,
authentication tools and DLP solutions,
organisations can minimise the risks
involved and take a proactive approach
to their cyber defences.
Given the nature of the industry,
financial services organisations are a
prime target for cyber criminals. The
temptation of personal information and
financial transactions for hackers is never
going to dwindle, so financial institutions
must prioritise cyber security, regularly
assessing risks, deploying innovative,
human-led solutions and educating
workforces to provide the best defence
possible. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 11

SECURITYUPDATE
A CONSUMER-GRADE SECURITY EXPERIENCE
FIONA BOYD, HEAD OF ENTERPRISE AND CYBER SECURITY AT
FUJITSU, EXPLAINS WHY IT’S TIME TO REIMAGINE SECURITY AND
STOP HOLDING BACK EMPLOYEE PRODUCTIVITY
Cyber threats are continually changing,
and new threats are emerging. One
striking example is the impact brought
on by the COVID-19 pandemic. Many
employees have had to leave the safe confines
of corporate networks and use potentially
insecure home devices and networks to access
corporate systems and data. Cyber hackers
have been able to exploit this trend in many
ways: by sending phishing emails which
promise exclusive information about COVID-
19, using bogus websites to trick users into
typing in usernames, passwords and banking
details for donations and fake relief efforts or
temporary government loans and grants.
Organisations develop policies that prevent
staff from being phished, but the side effect can
sometimes hamper employee productivity.
Moreover, people have to work and that almost
inevitably leads to 'exceptions' in the policy in
the way of shadow IT, including personal
devices without updated anti-virus software, or
unchecked USB sticks with the potential to infect
entire corporate infrastructures. But when it
comes to things like data protection and
privacy and tasks like data replication and
backup, not applying the corporate rules can
lead to a host of complications - some of them
very severe indeed.
A BETTER WAY?
There has to be a better way. We need to create
a consumer-grade experience with a corporate
security wrapper around it. These are almost
diametrically opposite needs, with a tension
that's complicated to resolve. It is a challenge to
create a better user experience while deploying
security measures for organisations working
across various countries and partner
organisations. And simple economics dictates
that any new system will be in place for quite
some time - meaning that it will become
outdated against the latest consumer tech
quicker than it can be kept up-to-date.
Where we are today is no longer fit for
purpose. IT departments create long policy
documents and force employees to review
them annually, but the dos and don'ts must
translate into something more dynamic. What
this points to is that the people aspect of
security is often more complicated than the
technical. And ironically, new technologies
could make things even more frustrating for
users. What's needed is a change in security
culture that treats users more like consumers, so
we move away from the once-a-year security
training event to something more interesting,
enticing and lasting.
Getting there will require business and security
teams working together, understanding and
agreeing what risks are unavoidable (and
planning appropriate security measures) and
those where the risk outweighs any likely
potential reward. Security has to speak the
language of business.
THE SECURITY CONTEXT
As a starting point, cyber security needs to have
a better handle on users. Today, access rights
are generated service by service or system by
system. This approach is too crude and too
complicated. There are fewer face-to-face
meetings now, but the need for executives to
access corporate systems remotely remains.
Blanket bans are unworkable and unnecessary.
Security is now moving towards personabased
rules, mapping reasonable behaviour for
that person, and applying it dynamically. This is
already in place in many organisations - at
least in a rudimentary way. What's likely to be
missing is context-sensitive role profiles,
dynamically created for different types of users
accessing data outside core working hours.
New 'digital experience' roles assist the shift in
enterprise IT, modelled on the consumer
environment, where services and products have
experience 'champions' to ensure what is
delivered is actually what the user wants and
needs. For the enterprise user, this isn't just
about making it look good: the task is to
protect value streams delivered by how people
work and to add value by mapping end-to-end
workflows. The way forward is for cyber security
and the enterprise experience owners to build
in the right security as part of the design.
TOWARDS A NEW SECURITY CULTURE
The new way: emulate the launch of a
consumer product. Look at the total experience
for the 'customer' and design-in security as part
of the overall value workflow. If we have the
digital experience owner, we have a starting
point to add value to the people who generate
value. But users have a role too. Security teams
can work as hard as possible to make
everything 'secure by design'. Still, unless users
take responsibility for doing their part, no
amount of smart technology will keep an
organisation entirely safe. When reimaging
how every employee can contribute to an
organisations' security posture and building a
culture that fully integrates intuitive security,
everyone plays a crucial role. NC
12 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

PRODUCTREVIEW
SolarWinds Database
Performance
Analyzer
PRODUCT REVIEW
PRODUCT
REVIEWPRODUCT RE
Databases are so critical to business
operations that it's essential their health,
availability and performance are
assured. Problems with databases and their host
systems are notoriously difficult to identify and
diagnose and can easily manifest themselves
when it's too late to stop them impacting on
customer services.
To ensure smooth database operations,
businesses need a proactive monitoring solution
and the SolarWinds Database Performance
Analyzer (DPA) provides a wealth of features.
Supporting all main cloud, on-premises and
virtualised database platforms, DPA offers deep
insights into performance and resource usage,
identifies anomalies and their root causes and
provides sage advice on remedial actions.
We found DPA easy to deploy and had it
running on a Windows Server 2019 host in
under 30 minutes. It provides a handy web
browser wizard that helps create a performance
data repository, and offers facilities to register
individual database instances or multiple ones
at the same time.
A key feature of DPA is its agentless
monitoring while larger organisations will
approve of its support for SQL Server
availability groups (AGs) plus Oracle's
multitenant container databases (CDBs). At its
foundation, DPA uses the proven Response
Time Analysis method to measure the wait time
between query requests and responses.
DPA gets right down to business as its home
page presents an informative top-level
dashboard with a graph identifying instances
with the highest wait times and another that can
show wait times trending upwards or
downwards. A summary below uses colourcoded
blocks to denote partially healthy or
unhealthy AGs, instances with excessive wait
times and host system hardware metrics that are
in warning or critical states.
Selecting a database instance from the list
below transports you to a dedicated web page
with coloured bar graphs showing wait time
trends for individual SQL statements over
custom time periods. You can drill down deeper
into the day's activities to see detected
anomalies and DPA provides full search
facilities for quickly locating any SQL statement.
DPA's advisors use proprietary algorithms to
analyse database performance and identify
issues and anomalies. All queries that have
raised an alert are listed where you can view
details such as the execution time, recent
variations in performance and historical
patterns of activity.
SQL blocking prevents resource conflicts but
can cause major performance problems when
lock durations are too long. DPA remedies these
issues as its graphs reveal the root blocking
transactions, their impact on other transactions
waiting for the resource to be released and even
poorly written SQL statements that may be
causing these issues.
Query performance analysis assists in
identifying the root cause of performance issues
where you simply click on a hash value at the
side of the wait graph and it'll load a detailed
view of the query's activity. DPA's machine
learning and intelligent analysis correlates all
relevant information in one page with the top
waits and statistics plus query and table tuning
advisors that provide valuable assistance in
narrowing down the culprit.
DPA snaps in seamlessly with the SolarWinds
Orion platform, allowing multiple products to
be used to monitor overall app health and
capture database performance metrics. The
optional SAM module can keep an eye on
database apps and host health while Orion's
smart PerfStack feature uses correlation projects
to compare metrics from multiple systems and
apps to identify the root cause of complex
network problems.
SolarWinds DPA is the perfect partner for
businesses that can't afford to have poorly
performing databases impacting their customer
services. It presents a wealth of information
about database issues, helps find their root
cause in as few as four clicks and provides
invaluable database tuning assistance. NC
Product: Database Performance Analyzer
Supplier: SolarWinds
Web site: www.solarwinds.com
Price: Perpetual from £1,597 per instance
excluding VAT
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 13

SECURITYUPDATE
ZERO TRUST
VED SEN, DIGITAL EVANGELIST, TCS, EXPLAINS HOW
MODERNISING OUR APPROACH TO CYBERSECURITY CAN
ALSO EMPOWER BUSINESS GROWTH
The risk of cyberattacks has increased
steadily in recent years but the
COVID-19 pandemic has made
these threats even more of a reality. With
65% of employees around the world
working from home, according to a new
study from Tata Consultancy Services, and
40% expected to continue to do so in
2025, it is unsurprising that cybersecurity
is top of mind for companies of all sizes.
This change in how businesses are
operating has opened the door to
opportunistic cybercriminals, who are
seizing the opportunity created by the
global crisis. From COVID-related
phishing schemes to Remote Desktop
Protocol attacks, which have soared by
140% in Q3, cybercriminals now have far
easier access to company networks. This
means having a strong VPN is no longer
enough to keep your organisation safe.
The traditional approach to cybersecurity
tends to focus solely on external threats,
with IT teams using firewalls to secure the
network perimeter. However, if this
perimeter is breached, the entire network
is put at risk, which can lead to
unimaginable losses.
Companies are now facing newer, more
sophisticated and pervasive threats, which
if left unaddressed could result in
shutdowns across entire industries. It is
therefore essential that businesses turn
their focus away from simply ensuring
compliance and following the outdated
philosophy of "trust but verify", as this only
goes as far as securing the network
perimeter. For a truly robust stance on
cybersecurity, organisations must close as
many loopholes as possible - whether
external or internal - so no opportunistic
criminal can exploit the network.
At the same time, the challenge for
cybersecurity is that while nobody
disagrees with the need for the best
possible security model, it is often seen
across business as an onerous and often
over-engineered impediment to getting
work done on a day to day basis. It is
absolutely critical for cybersecurity teams
to work closely with businesses to
understand their needs and to build
context aware models that actually enable
work. Cybersecurity can and should
improve the employee experience.
A more resilient model equal to today's
challenges begins with the premise of
"never trust, always verify". A Zero Trust
Security Model enables cybersecurity to
become more adaptable to emerging
threats and changing access needs. It also
takes into consideration the context of
requests for any protected resource. It can
detect threats in real time and take
immediate action to protect an
enterprise's data, devices and operations
in ways reused passwords and VPNs no
longer can.
Zero trust relies on eight core principles
and associated technologies:
1. Never trust. Always verify
Today, nearly all work takes place in a
networked environment. Where systems and
resources are spread across the cloud and
can be accessed in any way via any smart
device, no single security check can suffice
for overall security. Instead, the secure
approach requires validation for any
identity before access can be permitted.
2. Purpose-driven access
Earlier methods, such as a "one-time
password" sent to an email address via
internet protocols, no longer suffice; they
are too prone to compromise. Instead,
access must be contextual and timebound
to deliver required business
outcomes. Password-less multifactor
authentication (MFA) is both more secure
and faster for users.
3. Continuous risk-discovery, real-time
treatment
A "find to fix" approach should replace the
long cycles of audit, testing and
14 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

SECURITYUPDATE
remediation under which most IT
organisations have operated. While
compliance is always necessary for
regulatory adherence, reporting, and
security hygiene, real technology risk is
contextual. By having a zero trust model
in place, organisations can monitor and
verify a user's risk score before granting
them access to the network and other
enterprise resources.
4. Security by design
As cybersecurity must be central to the
customer experience and business
continuity, it should be considered as
early in the development cycle as
possible. The earlier security is
prioritised, the easier it is for companies
to deliver flawless projects repeatedly and
without risk.
5. Information-centric security
From a business perspective, it makes
sense for many organisations to choose to
focus on their business rather than the
data they hold or the IT functions they
have in place. However, from a security
perspective, by putting proprietary
information and expertise - their data and
its uses - at the core of the business,
companies can secure a perimeter.
Thanks to the proliferation of cloud-based
models for many computing needs, this is
much more achievable.
6. Security as culture
As the saying goes, a chain is only as
strong as its weakest link, and a
company's data is only as secure as its
most vulnerable vector. Beyond making
cybersecurity an enforcement issue, a
culture of security makes it everyone's
responsibility. This means putting training
in place for every employee to empower
each user to sense and act on
cybersecurity matters.
7. User experience focus
In all of this, security organisations need
to work with user experience specialists to
ensure that work can still get done and the
demands of corporate security do not
become an impediment to getting work
done, or delivering consistently bad user
experiences, as that will in many cases
lead to behaviours that will compromise
the security. This is both in terms of how
processes are designed (not just
engineered) but also in how they are
communicated, and the user community
engaged. Just as users need to understand
corporate security principles, the security
teams need to understand how work is
done, to truly get the best outcomes.
8. Intelligence
Patterns are everywhere, and with the use
of AI Ops and related toolkits, it is likely
that any breaches, or attempts, are
leaving their own fingerprints and patterns
which are traceable. It's imperative that
security teams also add AI and
intelligence to their toolkit to pre-empt
attacks or breaches and for early
recognition of the patterns which can lead
to these breaches.
A SECURE FUTURE
Leading-edge, risk-focused and contextaware
security is increasingly available as
a service and should be invested in, rather
than adopting a one-size-fits-all software
solution. Forward-looking companies
must take a "never trust, always verify"
approach when granting access to their
data and processes. Thereby
acknowledging that threats evolve and
require the capabilities available in
advanced technology - such as AI,
automation, cloud computing, and agile
development - to address them.
Through leveraging this technology, a
business can embrace a more resilient
and adaptable cybersecurity model. Not
only does this increase an organisation's
chance to overcome challenges, but it
also allows them to take advantage of the
opportunities that come from emerging
digital ecosystems. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 15

OPINION
FROM DATA LOCKDOWN TO DIGITAL TRANSFORMATION
BUSINESSES NEED INSIGHT, NOT JUST DATA, WHEN IT COMES TO DIGITAL TRANSFORMATION,
ACCORDING TO PETER RUFFLEY AT ZIZO
Digital transformation of any
business has always been
hampered by making sense of
underlying data. And that data has been
growing in volume at an unprecedented
rate driven by the growth of IoT. It's the
perfect storm - the need for real-time
information being increasingly distanced
by the rate at which the data volume is
growing. Businesses need insight, not
just data, which means getting the right
information, to the right person, at the
right time.
But the age-old problem remains today
- how do you understand and see what
data you have readily available, in a
format that's usable and that you can
access at the right time? Peter Ruffley,
CEO, Zizo, explores three aspects
businesses must consider to get out of
'data lockdown.'
DATA ACCESS
There are a multitude of ways to store
and access data, but a majority of
businesses haven't considered access to
external data sources yet. When we
begin to question how to enrich and
improve data, one of the fundamental
capabilities of this process is by
integrating external third-party data
sources, such as weather, crime or other
open data sources.
Businesses must have an understanding
of what they need to do to make the
process worthwhile, and ensure they
have the correct capabilities before they
start. A common first approach for many
organisations is to build from scratch
and make it their own, rather than
considering the buyer approaches where
you look at what's out there, explore the
marketplace and transform existing data
to use within the business, rather than
starting from the ground up.
If they can't combine different sources
of data quickly and cost-effectively
together, they won't move forward. It
makes sense to digitally transform an
organisation if it is going to make use of
what's already out there, as being able to
16 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION
tap in and share other work and insights
will make the exercise worthwhile and
cost-effective. With combinations of
solutions available in the marketplace
that can accelerate the process by
providing the necessary building blocks,
it's time to transform the digital
transformation process.
DATA RESPONSIBILITY
There remains a disconnect between IT
teams and businesses' impressions about
what it means to provide the data. If
both parties are not aligned with the
same aims of the business, the project
could stall at the first hurdle. Instead,
organisations need to bridge the divide
and encourage stronger collaboration
between all stakeholders. When
businesses realise where those holes are
in their structure, it's key to get people
involved to solve those challenges.
This involves change on three levels;
personnel, cultural and technological.
Who's responsible for this chain? Whose
action is it? How do we bring these
teams together? The business might be
storing a lot of data, but how can it be
accessed, interrogated and made
useful? How will the business' data goals
be defined?
Typically, the digital transformation
initiative comes from the top in the
organisation. In order to get your
business on board, you have to make a
very clear case of what the benefits are.
Employees need to trust that
improvements will be made for them by
doing this, rather than just dictating the
plan. Digital transformation is a change
programme, which impacts all aspects of
the business. You therefore have to
approach it in the same way that you
would approach any change project -
with clear objectives and an agreed
process of identifying how you're going
to get value from data. With a
compelling case, you have a much better
chance of carrying it through with buy in
from all stakeholders.
DATA AND OBJECTIVE
IDENTIFICATION
You can't embark on a digital transformation
initiative without a concept - you're
condemning the project to failure if the
business is not engaged properly with the
process before you start. In order to yield
business benefit from data, organisations
must identify the areas that will realise the
most benefits. Even if they're hypothetical,
there must be measurable ambitions in place
or milestones for this journey, so that there is
an understanding of what you're going to do,
and what you want to get out of it. Or if
those ambitions weren't achieved, why not?
What steps need to be taken next time?
Organisations have to be able to collect
the data and assess whether they can
achieve their business objectives from that
data. But a goal of just 'digital
transformation', 'digitising data' or 'making
more money' will never translate into a
concrete business case. Goals need to be
specific and measurable in order to
determine the project roadmap and for
success to be evaluated.
More importantly, you have to
understand where the data is in your
organisation and what it's being used for,
before you start the process of
transformation. The whole supply chain
needs to be aware of the transformation
and the demands that are going to be in
place. You've got to be very open about
this process, because there will be people
who you haven't thought of that might be
impacted by the changes you're making.
With easy access, a connected team and
clear objectives, companies can have a clear
outline of what it is they set out to achieve in
their digital transformation, how they expect
to make this transition with the data
available, and who can take on what role in
this process. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 17

OPINION
HOW TO PREPARE IP NETWORK INFRASTRUCTURE FOR THE 5G ERA
VINCENTAS GRINIUS, CEO AT IPXO AND ZILVINAS VAICKUS, HEAD OF INFRASTRUCTURE AT
IPXO, SHARE A FEW POINTERS TO KEEP IN MIND WHILE PLANNING A 5G MIGRATION STRATEGY
The fifth-gen network brings with it
immensely fast data speeds, however,
it has a short-distance reach: the
mmWaves 5G runs on span across only a
few hundred metres. To cast a widespread
net, a denser network of small cell towers
that emit the necessary wavelength have to
be set in place.
For this reason, edge computing is also
stepping into the limelight, in order to
accommodate the need for faster data processing.
With properly set up edge computing
architecture, event processing happens
in the edge node closest to the device.
Consequently, resource-heavy devices can
retrieve data at high speeds as it does not
have to travel long distances to a cloud or
a data centre.
"Fifth-gen requires a tightly-knit network
infrastructure. As speed and scale are
imperative to the new wireless, the proximity
of network components correlates with their
capacity to process information at incredibly
high levels," said Zilvinas Vaickus, Head of
Infrastructure at IPXO.
"Data centres as we know them will
become an old story," Vaickus continued.
"They will clear the way for densely-situated
nodes, which will need to be implemented
to provide the necessary agility in accordance
with the next-gen network."
ASSURING BACKLINK COMPATIBILITY
IPv6 will have a major role to play in 5G,
as IPv4 addresses, which are already in
short supply, could never satisfy the evergrowing
connection demand further down
the road. That said, the majority of systems
in place are IPv4-compatible only. To leverage
in-house equipment alongside new
standards for speed and data processing,
implementing a dual-stack network with the
capacity to process IPv4 and IPv6 traffic
simultaneously becomes a crucial step
when upgrading network architecture.
"To think that with the coming of 5G and
Internet Protocol 6 IPv4s would suddenly
become irrelevant would be unrealistic,"
explained Vincentas Grinius, CEO at IPXO.
"Building an entirely new network of IPv6-
only equipment would be too much of a
grandiose aim that, for most, is not worth
neither the time nor the investment. The
simple truth is that there will always be systems
compatible only with the previous
protocol. Thus dual-stacking is a nonnegotiable
integration when preparing for
5G migration."
Since IPv4 addresses will remain an integral
part of the network, IP leasing platforms
like IPXO will only grow in importance,
as they will be able to lease out
IPv4s necessary to ensure overall backlink
compatibility among systems.
WFH INFRASTRUCTURE CHALLENGE
Although 5G technology is more robust and
advanced compared to its predecessors,
managing its security will not be an easy
task to tackle. Addressing network vulnerabilities
becomes an even more sensitive
issue when you consider the increasing trend
of remote working. As security executives try
to wrap their heads around overseeing all
the possible weak spots concerning the
internal network, now they are obligated to
look even further and define safeguards for
remote workforce.
"Fifth-gen supports a huge amount of connected
devices. Consequently, this means
there is a significantly larger number of possible
access points to attempt to highjack,"
commented Grinius. "While managing core
network security remains the top priority, setting
up a well-structured WFH infrastructure is
definitely coming in as a close second in
terms of preventing possible data breaches.
Personal computers and networks often have
fewer safeguards in place, and thus become
an easy target for scammers."
All in all, with the new generation rapidly
approaching, the focus for most should
remain not necessarily on the benefits 5G will
bring to the table, but rather how to be better
prepared to facilitate smooth integration with
existing networks, ensure device compatibility
and mitigate associated threats. NC
18 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION
HOW APIs ARE SHAPING THE NEW WORKPLACE
JAMES HIRST, COO & CO-FOUNDER, TYK, EXPLAINS HOW
APPLICATION PROGRAMME INTERFACES ARE EMPOWERING
CUTTING EDGE COLLABORATION TOOLS
Over the course of the past year the
workplace has changed. Employees
have moved from sitting primarily in
an office surrounded by work colleagues, to
now working from their own homes. While
remote working has become more normalised
and phrases such as, 'you're on mute'
embedded in our lexicon, many organisations
are looking at how they can better enable
more seamless communication and
collaboration across their teams - with the
overall goal of keeping productivity high.
Since the beginning of the COVID-19
pandemic, organisations across the globe
have quickly moved to invest in technology
solutions that provide employees with the tools
to do their job remotely. Companies such as
Slack and Zoom have seen their value
skyrocket over the past few months, with
organisations prioritising software solutions to
support basic business operations.
Key to the success of implementing software
into an organisation, is ensuring it brings
together and integrates legacy platforms as
well as provides the ability to scale as required.
With many employees demanding and
expecting their workplace tools to deliver the
same levels of integration and connectivity that
they've come to experience across their
personal lives, workplace technology solutions
need to be intuitive and have easy-to-use
interfaces which can work across a range of
platforms - often simultaneously and in realtime.
And at the centre of enabling this are
Application Programme Interfaces (APIs).
CONNECTING THE WORKPLACE
Simply put, APIs are the connectors between
two applications, enabling them to talk to each
other. It works as the messenger or intermediary
between two applications. For example, a
salesperson may want to search a potential
prospect or customer to see the last interaction
with them. They enter the customers name into
their company database, which sends a request
to their sales platform to provide the
information. This means your company
database is interacting with the separate sales
platform to pull the information you require.
Collaboration tools are now ubiquitous, but
generalised. For many enterprises, they have
specific lines of business applications and data
siloed away. The value of that data is best
realised when it's accessible remotely by teams.
I expect demand for more seamless integration
between these and the common collaboration
tools to grow rapidly.
THE ACCESSIBILITY OF AI
The pandemic has meant that many
organisations are having to address how they
run their operations efficiently. This has meant
evaluating current staff roles and adopting
technology solutions that help people to work
smarter, not harder. For many employees the
burden of delivering everyday, time intensive
admin-based tasks, such as data entry, has
meant that the more strategic parts of their role
get put on the backburner. Artificial Intelligence
can play a key role in providing a workplace
solution that can free employees time up to
refocus on more high-value strategic tasks that
have a bigger impact on the bottom line.
The use of AI, more than pretty much any
emerging tech today, is also contentious.
Ownership of the AI capability and the security
and integrity of the data that flows through it
will be heavily scrutinised. Putting an
architecture in place that recognises this and
that enables enterprises to pick, choose and
change from AI APIs at will is therefore critical
to ensure business value isn't locked up in
proprietary vendors.
SUPPORTING DIGITAL
TRANSFORMATION IN 2021
Organisations are relying on APIs more than
ever to help them reach their digital
transformation goals, and gain the most value
out of their investment into software solutions.
In 2017, Forbes contributor, Louis Columbus
stated that 2017 was the year of the API
economy. Now arguably APIs will come under
the spotlight again this coming year, with many
organisations' realising that becoming a 'digital
first' company is not a preferred option but
critical for survival during these uncertain
times. As a result, it's likely many will move
away from developing bespoke solutions from
scratch and towards more efficient solutions
that deliver ROI fast.
Businesses have had to rapidly adapt in order
to survive this year - accelerating and
reprioritising technology adoption that they
had previously planned to implement in future
years. Central to this technology acceleration
has been developer teams, who have adapted
and innovated quickly to ensure business
operations continue to function. This has
increased awareness of the importance of the
role that developers play in the business - and
over the next twelve months, the developer
community will start to play an even more
strategic role within the business, through
implementing new processes and procedures.
With the growing need for better digital
ecosystems, IT leaders will be looking towards
purchasing ready-to-go applications and APIs
that they can implement quickly and easily and
allowing them to scale as required. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 19

OPINION
FINDING THE IT FACTOR IN A VENDOR
VIKKI DURDEN, HEAD OF OPERATIONS AT UK IT SERVICE, DISCUSSES THE TRAITS BUSINESSES SHOULD SEARCH FOR IN A
POTENTIAL I.T. VENDOR - AND THE ONES THEY SHOULD SEEK TO AVOID
During a challenging economic
period for UK business, it seems
the attraction of external, low-cost
IT providers, and new pay-as-you-use
models may be too much for companies
to resist. So much so that investment has
skyrocketed in this sector, with nearly £4
billion in investments made annually by
UK firms. However, to reap the rewards of
cost-effective and efficient IT, businesses
must understand how to get the most out
of their partnership with a vendor.
PUTTING YOU FIRST
Typically, IT vendors are brought in to
supplement an existing IT infrastructure. To
identify the right supplier to complement
the work you're doing, you need to put
your own needs first.
While cost-of-service will no doubt play
a role in any decision during these
financially taxing times, it shouldn't be the
be-all and end-all. For example, paying
slightly more up-front to partner with a
vendor which offers unmatched
responsiveness and flexible hours, often
saves businesses money long-term in
minimised downtime and disruption.
Depending on the company's priorities,
you may require a vendor who has a
proven track record in delivering a
specific specialism, or one which is agile
enough to help your business close in on
an opportunity.
To ensure that a potential vendor is a
right fit for you, you should first establish a
detailed list of goals and key performance
indicators for your chosen vendor. This
may include improving cybersecurity or
navigating a complex cloud migration
project. Agreeing to SLAs and KPIs in
advance allows you to cross-reference the
needs of your business with the
capabilities of the vendors. It also lays the
foundations for clarity in the relationship.
These metrics also serve as a framework
to help businesses track the value of their
investments, keep both parties focused on
a set of core objectives, and acts as a
tangible target when reviewing
performance at the end of each quarter
or year.
UNCOMPLICATING
COMMUNICATION
Clear dialogue from the outset is crucial
in building a long-lasting business
relationship with a vendor, in setting
mutual expectations and addressing any
issues. Poor communication is the
underlying cause of most relationship
breakdowns between business and vendor.
It's important then to look for vendors with
a diverse range of tools to facilitate clear
communication. Do they have sociable
working hours? Are they available via
both telephone and email?
However, if their response time is substandard
it won't matter how many
channels are open, as you won't be able
to act with the agility needed to succeed.
Responsiveness is a must-have
characteristic for most businesses, so you
should be looking at vendors with a
proven track record of high-end customer
service. If a vendor has these traits, it can
be well worth any additional investment as
it shows a commitment to quality you may
not find elsewhere.
20 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION
Search for the business on reputable
review sites, like Trustpilot and, where
possible, request case studies. These will
help you gauge whether the provider is
willing to go above and beyond to deliver
the project or will simply produce the
minimum level of work expected.
COMPLIANCE IS KEY
Data security is a huge problem for UK
businesses, who amass over £3 million
per year in losses, as a result of data
breaches. With the UK government
clamping down on non-compliance with
fines of up to £18 million, businesses
can't afford to chance their luck running
insecure operations.
Many businesses are simply unequipped
to handle extra security tasks, especially in
understaffed SMEs. This is where IT
vendors prove their worth - not only do
they make light work of cybersecurity
threats and compliance tasks but they can
also help educate employees as they build
the necessary infrastructure to stay secure.
Review each vendor's credentials,
including requesting relevant
cybersecurity and certifications and
viewing online testimonials, keeping note
of any complaints or problems from
people using the service. You're also
entitled to ask a vendor for evidence of
an emergency contingency plan - in case
of a crisis - so, don't shy away from
requesting one.
This gives businesses the peace of mind
that the vendor is equipped to meet their
needs in terms of data storage and online
threats. It also opens a dialogue and
demonstrates transparency and trust,
which are vital to any mutual relationship.
A LOOK TO THE FUTURE
There's a common perception around IT
vendors - that they're only to be used for
one-off projects, troubleshooting small
errors and fixing bugs - which is proving
increasingly untrue.
With the rapid growth in the capabilities
of vendors, they can form a reliable
foundation upon which SMEs can enjoy
long-term success and build their entire
IT infrastructure. Access to a whole team
of IT directors allows small businesses to
compete with corporate giants while
avoiding the overhead costs of
employing an in-house team.
To make sure you have a relationship
built for longevity, it's important to
partner with a proactive and forwardthinking
vendor, rather than one which
simply carries out instructions when
asked. Quiz potential providers on what
they see as the business' IT weak points
and how they would address and
innovate them.
The answer to these should reveal
whether the vendor has the potential to
implement transformative projects like IT
audits, cloud migration and designing
comprehensive IT roadmaps, or whether
they are likely to take a more passive
approach to the relationship. NC
PROFICIO
WINNERS OF OUR CLOUD-DELIVERED SECURITY SOLUTION OF THE YEAR AWARD
Proficio is a leading managed security services provider (MSSP) of managed detection and response (MDR)
services. Our clients receive around-the-clock event monitoring and incident management from our SOCs in
California, Barcelona and Singapore. Our security experts are highly responsive and understand your
environment, policies, and processes, acting as an extension of your IT security team. We use AI and cloud
technologies to hunt for targeted attacks, rapidly alert clients to critical threats, and automate containment of attacks
before they cause damage. Proficio's MDR services have been recognised in Gartner's Guide to Managed Detection
and Response Services annually since 2017. Proficio was also the first MSSP to build an automated response solution
to instantly contain high-fidelity threats without human intervention.
Proficio's next-generation MDR platform uses a universal bus architecture to provide our clients access to cloudbased
services and fast search. Our platform provides all the benefits of a dedicated SIEM without the cost and
complexity of owning and operating SIEM software. Client's security logs are collected and analysed using advanced
use cases, threat analytics, and AI-based threat models, which provides them with more accurate detection of
indicators of attack or compromise. Proficio also provides MDR services for clients who have invested in a dedicated
SIEM, such as Splunk.
Proficio provides visibility into each client's security posture including a relative risk score calculated on their use of
security tools to detect and prevent threats. We also provide services to manage endpoint detection and response
software, next-generation firewalls, and Risk-Based Vulnerabilities.
COMPANY PROFILE
COMPANY PROFILE COMPANY PROFILE

OPINION
A FORWARD-LOOKING GUIDE TO BUYING IT
EQUIPMENT FOR SMES
WORKING OUT WHEN TO UPGRADE BUSINESS TECHNOLOGY IS
NOT JUST ABOUT ITS PHYSICAL CAPABILITY. SIMON MICHIE AT
PULSANT EXPLAINS WHY
Working out when to upgrade
business technology is not just
about physical capability but also
about supportability for new applications.
As many SMEs understand, components
inevitably degrade over time, leading to
unexpected interruptions and in the worstcase
scenarios, significant data loss and
the serious consequences that come with
that.
A hard drive (HDD) lasts about six years
as its spinning disks wear out after
continuous usage, while the integrity of the
data stored on an aging disk deteriorates
due to excessive wear, the presence of
contaminants, radiation and heat.
Comparing the lifetime of a solid-state
drive (SSD) is complex because its length is
greatly determined by the total terabytes of
data written onto it. As a result, in order to
minimise the risk from aging components it
is essential that the performance of
applications is monitored regularly and
SME's are up to date on the options
available to them.
If the technology had a reasonable
specification when purchased, then unless
it has become incompatible with a
company's chosen new application (more
likely due to an aging operating system
than the hardware), IT staff should be
monitoring the performance of systems
and applications and assessing whether
any perceived slow-down is affecting
employees' efficiency. User satisfaction is
crucial for the success of IT initiatives, so
performance monitoring shouldn't be
limited to tracking IT resources such as
CPU, memory, disk, etc, but all aspects of
the experience. To do this, IT operators
and administrators can assess end-user
availability and performance with the aid
of user experience monitoring software.
If the performance does remain
acceptable, then the only real driver is
reliability which is affected by ageing
components such as fragile motherboards
and on-board circuitry, power supplies or
disk drives. Keeping a close check on
reliability across all the hardware and
determining the failure rate may well make
the decision an obvious one, even if the
equipment itself is still capable of
operating the software that the business
depends upon.
ON-PREMISE VERSUS CLOUD:
THE COSTS
Housing a server on-premise is an
expensive undertaking which involves
everything from air conditioning systems to
power distribution, networking and power
backup. All of this requires significant
levels of capital investment and on-going
operating expense.
Alternatively, cloud has an array of
advantages such as greater agility, cost
savings and faster time to market. There's
no need for hardware in the virtualised
environment and businesses can pay for
storage which is cheap and easy to do.
Apart from paying for bandwidth and
connectivity, there is no cost associated
with getting data into the cloud; however,
there can be unbudgeted costs associated
with getting data out of the cloud. The
processing of information and returning
results is where costs can often start to rise.
A full move to the cloud may not always
be desirable because of concerns over
security and control and in this case, the
answer is often colocation. By moving their
servers to a trusted vendor's facility, SME's
can uphold absolute control over their
data without maintaining a costly,
dedicated, potentially insecure, in house
data centre.
The key cost advantage of colocation is
that providers host multiple customers
within each data centre, allowing them to
22 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

OPINION
spread the cost of maintaining systems and
offer high service levels at a reduced
overall operational cost. Also, unlike onpremise,
SME's can scale their data centre
footprint as their business grows, without
the up-front capital expense that would be
needed to expand an on-premise server
room.
A NEW MODEL FOR TECHNOLOGY
SERVICES
With many SMEs considering making
infrastructure changes following a
prolonged period of remote working, it is
likely that a lot of them may want to
consume services differently in the future.
For example, the scale of outsourcers and
their investment in data centres,
technology and staffing means that
organisations can consume the resources
they need, only when required, using an
OPEX model.
This avoids the need for up front capital
costs, depreciating assets, and investment
ahead of peak periods. Flexibility in cloud
services also enables businesses to scale
up and down as needed, using a pay-perconsumption
model to match the
organisation's income stream. The Covid-
19 crisis has highlighted the importance of
having the right IT infrastructure in place
and after gaining a lot of useful experience
in remote working during 2020, as we
close in on the new year many businesses
will now need to consider wider
infrastructure changes for the longer term.
SUPPORTING LONG-TERM REMOTE
WORKING
Because some SMEs are relatively lean in
terms of their own technology expertise, they
may consider outsourcing for the advantages
this option provides. It is possible for SMEs to
achieve significant savings on IT resources
and they can benefit from quicker
troubleshooting, more robust support
channels and as a result less time and money
spent ensuring infrastructure reliability.
Additionally, by using a trusted managed
service provider SMEs can significantly reduce
the time, resources and costs of supporting
and managing their own infrastructure and
focus exclusively on the services and
solution they offer to customers. NC
ALTARO
WINNERS OF OUR DATA PROTECTION PRODUCT OF THE YEAR AWARD
Altaro develops award-winning backup solutions for managed service providers (MSPs), IT resellers and
companies. With 50,000+ customers in 121+ countries, 10,000 partners and 2,000+ MSPs, Altaro provides
affordable, easy-to-use, enterprise-class functionality coupled with outstanding 24/7 tech support. Altaro is a
one-stop-shop for all your backup and recovery needs, providing solutions for all key areas of your network, including
Hyper-V and VMware virtual environments; Microsoft Office 365 mailboxes, OneDrive and SharePoint; roaming
andon-premise endpoints such as network desktops and laptops; and physical Windows servers.
Altaro also offers monthly subscription programs for MSPs, and is the only vendor on the market that enables MSPs
to manage all their different types of backups from one central multi-tenant console, across all their customers. The
company has offices in the US, the UK, Germany, France, North Macedonia and Malta.
KNOWBE4
WINNERS OF OUR EDUCATION AND TRAINING PROVIDER OF THE YEAR AWARD
KnowBe4, the provider of the world's largest security awareness training and simulated phishing platform, is
used by more than 35,000 organisations around the globe. Founded by IT and data security specialist Stu
Sjouwerman, KnowBe4 helps organisations address the human element of security by raising awareness
about ransomware, CEO fraud and other social engineering tactics through a new-school approach to
awareness training on security.
Kevin Mitnick, an internationally recognised cybersecurity specialist and KnowBe4's Chief Hacking Officer,
helped design the KnowBe4 training based on his well-documented social engineering tactics. Tens of
thousands of organisations rely on KnowBe4 to mobilise their end users as the last line of defence.
COMPANY PROFILE
COMPANY PROFILE
COMPANY PROFILE
COMPANY PROFILE

SECURITYUPDATE
RANSOMWARE: NEW YEAR, NEW THREATS
VENIAMIN SIMONOV, DIRECTOR OF PRODUCT MANAGEMENT AT
NAKIVO, SETS OUT SOME OF THE RANSOMWARE TRENDS TO BE
AWARE OF IN THE YEAR AHEAD
News of ransomware incidents are
now making the headlines more
than ever before. Not only do
companies suffer significant financial
losses to remediate ransomware attacks,
but they also cause reputational brand
damage that could impact their stock
value and ability to both retain and
attract customers.
COVID-19 has caused an increase in
the number of attacks taking place in the
past year with many more of us now
working from home. With some
organisations 'cornered', the impact of
these attacks is also growing in scale. For
example, in July 2020 U.S. travel
management firm CWT paid $4.5 million
to hackers who stole reams of sensitive
corporate files and claimed to have
knocked some 30,000 computers offline.
With ransomware attacks becoming
increasingly frequent, how has ransomware
changed in light of the COVID-19
pandemic, and what trends can we expect
to see in 2021 and beyond?
PANDEMIC IMPACT
The Coronavirus pandemic has sent a
ripple effect across industries - with another
national lockdown workforces have been
confined to home offices once again.
Many remote users are not well protected
and can easily become a target for
ransomware attackers. More commonly,
attackers will target larger organisations for
the potential financial gain, however, since
the beginning of the pandemic there has
been a rise of home users being attacked
by cybercriminals. This is due to a lack of
awareness or security measures in place
for remote users.
With the increasing uncertainty
surrounding the possible health
consequences of the pandemic,
ransomware attackers have taken
advantage of impressionable individuals -
using the COVID-19 topic in their phishing
emails. For example, users have reported
reviewing suspicious messages containing
information about coronavirus and
requesting the user to open an
(unknowingly dangerous) attachment. Latest
ransomware and malware trends reveal that
the number of coronavirus related phishing
is becoming a recurrent issue.
REDUCING THE RISK
The rate of ransomware attacks rose
exponentially in 2020. Microsoft has
reported that incidents related to
ransomware are the most common
cybersecurity breach since October 2019.
According to the 2020 Microsoft Digital
Defense Report, 13 billion malicious and
suspicious mails were blocked by Microsoft
between January and October 2019.
Blocked emails, in particular, contained
more than one million malicious links that
had the potential to trigger an attack.
To reduce the risk, every home or
enterprise user should follow online safety
rules and security policies even when
working remotely. Only by receiving
appropriate training and being aware of
the latest ransomware threats are users less
likely to be infected. Some of the most
obvious rules include avoiding links from
unknown sources, installing anti-virus
software on all computers, making sure
that the anti-virus is updated regularly and
configuring a firewall.
On the rare occasion that your computer
does get compromised, it's recommended
that you don't pay the ransom as this will
24 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

SECURITYUPDATE
"Research shows that new ransomware can easily steal users' data to extort a victim.
Since data loss is a growing concern for companies and individual users, these attacks
are becoming increasingly prevalent and sophisticated. While large organisations are
targeted the most, COVID-19, and a shift to remote working has triggered an influx of
individuals being victimised, which can only be mitigated by implementing the correct,
responsible security measures."
only encourage cybercriminals.
Furthermore, this can come at a huge
financial cost - according to Safety
Detectives, the average requested ransom
amount has risen from $4,300 in 2018 to
$8,100 just two years later. Cybersecurity
Ventures have also predicted that the
damage caused by ransomware would be
more than 20 billion USD in 2021. That
said, there is also no guarantee that you'll
be able to decrypt files after paying a
ransom or that your stolen data will not
be sold to competitors or other criminals.
DATA LEAKS, ENCRYPTION
AND INFECTION
A particularly vicious ransomware
technique involves stealing data from a
victim and then encrypting files on
infected computers. Attackers threaten the
victim by publishing a portion of stolen
data on the dark web and demanding a
ransom fee in return - regardless of
whether the victim has backups to recover
their data. This is a particular concern for
a company which operates with customer
data - if the data is leaked publicly, they
could incur hefty fines. This approach is
known as double extortion.
The methods of infecting ransomware
have remained almost the same in 2020.
According to figures from Ransomware
Detectives, 67% of attacks stem from
spam and phishing emails, 36% are due
to inherent human factors such as when
users are not trained well enough and
30% are due to weak passwords and
insufficient access management. More
specifically, the most popular methods to
infect computers and infiltrate networks
remain almost the same as in the past
year: Remote Desktop Protocol
Misconfigured public cloud instances,
USB flash drive and other removable
mediums.
WHO IS BEING HIT HARDEST?
In 2020, ransomware targeted North
America with 33% of total attacks, Asia
with 30% and Europe with 27%. Research
from BlackFog demonstrates that
developed countries across the globe are
targeted more heavily, with the USA, UK
and Australia hit most commonly,
followed by Canada, Germany, Denmark,
Japan and France. In extreme cases,
some countries have been known to hire
state-sponsored hackers to launch attacks
against organisations (including those
related to critical infrastructure) and
competitors in rival countries.
It is rather unsurprising that Windows is
the most infected operating system, with
85% of ransomware occurring on this
interface. A considerably lower amount
(7%) occurs in both macOS and iOS, and
merely 5% attack Android platforms.
However, trends seem to be shifting as
macOS is increasingly being targeted by
ransomware creators - since 2018,
detection of malware on Mac devices
has doubled.
For organisations, BlackFog reports that
companies with a low tolerance for
downtime are the most vulnerable to be
targeted by ransomware criminality - such
as manufacturing companies, the
professional services sector and
government organisations. This is because
hackers choose organisations that cannot
afford significant downtime, or because
an attack will mean they face regulatory
fines if they handle public data. For these
reasons, they are more likely to pay the
ransom. With pressure on the public
sector particularly intense this year as a
result of Coronavirus, attacks on
healthcare and educational organisations
have grown.
2020 saw ransomware attacks grow in
virulence, with attackers taking advantage
of remote work vulnerabilities. Research
shows that new ransomware can easily
steal users' data to extort a victim. Since
data loss is a growing concern for
companies and individual users, these
attacks are becoming increasingly
prevalent and sophisticated. While large
organisations are targeted the most,
COVID-19, and a shift to remote working
has triggered an influx of individuals
being victimised, which can only be
mitigated by implementing the correct,
responsible security measures.
No matter how careful one can be,
ransomware on a global level is unlikely
to be conquered any time soon. NC
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards JANUARY/FEBRUARY 2021 NETWORKcomputing 25

CASESTUDY
Matt Parker
A BRIGHTER OUTLOOK
THE BRIGHTSTAR GROUP TURNED TO BABBLE TO
FUTUREPROOF ITS TELEPHONY PLATFORM AND ENSURE
ONGOING BUSINESS RESILIENCE
Continuing a long-term relationship
with Babble that has helped The
Brightstar Group to thrive over the
last 4 years, the Cloud Comms, Contact
Centre and Cyber technology firm was
asked to advise on the best solutions
available.
Babble recommended that a hosted
solution was implemented at the new
premises in the City of London, before
being rolled out across the entire three
office estate. This would, over time, enable
calls to be transferred between locations
free of charge, saving the specialist
finance company approximately 27% every
year on overall call and operating costs.
Babble provisioned dedicated internet
connections at each office location,
provided call data and recording facilities
and introduced mobile twinning
applications to allow each of the 70
users at The Brightstar Group to either
work from home or remote locations,
whilst staying connected to the telephone
system - features that could not have
been added onto the existing
infrastructure without incurring CAPEX
costs. Additionally, the new solution
provides the firm with added disaster
recovery procedures, allowing calls to be
re-routed to different offices or individual
mobile users, protecting the business
from experiencing levels of downtime in
case of an emergency.
At a time when business continuity has
never been more important, Babble's
pioneering solution was implemented in
just 2 weeks, with The Brightstar Group
able to continue providing business as
usual for all of its clients throughout.
As well as supporting its offices in
London, Manchester and Billericay, the
new telephony platform allowed The
Brightstar Group's 70 members of staff to
shift to remote working overnight in
response to the Coronavirus pandemic.
With the rollout and testing completed
with ease, Babble's flexible solution
enabled the company to continue carrying
out mortgage and loan applications with
lenders without a dip in performance.
Productivity at The Brightstar Group has
also dramatically increased when
compared to pre-lockdown, as a direct
result of Babble's solutions. 100% of calls
are covered by the new remote, call
recorded and audited systems, allowing the
field-based team to continue handling call
centre calls without disruption to clients.
Matt Parker, CEO at Babble, said: "It is
not only incredible to have streamlined
The Brightstar Group's services, but
Babble also ensured that the business
could implement flexible working at a
time when it has never been so crucial.
The pandemic has forced a reset to the
way in which we work, providing an
opportunity for businesses to emerge in a
much stronger position. Overnight The
Brightstar Group shifted over 70 staff
members to home working in response to
the pandemic, with users from three
separate offices able to continue carrying
out their day-to-day tasks to the utmost
standard - a real achievement and an
example to others."
William Lloyd, Director of Operations at
The Brightstar Group, commented:
"Babble's work has been vital in ensuring
that The Brightstar Group could thrive
during this time of great uncertainty, as
well as over the last four years. Remote
working has never been so important and
the fact that we have been able to
support our employees so seamlessly
during this period is fantastic. We are
extremely thankful for the employees at
Babble, whose hard work and dedication
has enabled us to restructure and vastly
improve our operations." NC
26 NETWORKcomputing NOVEMBER/DECEMBER 2020 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

AWARDS
SPONSORED BY
WINNING FROM HOME
THE 2020 NETWORK COMPUTING AWARDS WINNERS ARE HERE!
The 2020 Network Computing Awards winners were announced online in October. In a typical
year the results would have been announced at an evening awards ceremony in London - but then
2020 was anything but typical. Our 2020 winners include Silver Peak, who won our newly
introduced Networks on the Edge category as well as the SD-WAN Vendor of the Year award. Dell
were the winners of the Product of the Year category for their PowerEdge MX server platform, while
Zyxel won the Network Project of the Year award for their work for The Stephen Lawrence
Charitable Trust. Congratulations once again to all of our winners and runners-up, and a big
‘thank you’ to everyone who helped make this unconventional awards year possible.
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards
JANUARY/FEBRUARY 2021 NETWORKcomputing 27

AWARDS
NETWORK INFRASTRUCTURE PRODUCT OF THE YEAR
WINNER: Allied Telesis - X950
RUNNER UP: Dell EMC - PowerEdge MX
Allied Telesis x950 Series switches are ideal for the modern enterprise network core, providing resilient, reliable and scalable solutions up to 100
Gigabit connectivity to provide the capacity that today's Smart City and IoT networks need.
Featuring a high-performing 1.92 Terabit fabric, to eliminate bottlenecks and effortlessly forward all traffic, the x950 Series offers:
24 or 48 x 1/10 Gigabit SFP+ ports, or 24 or 48 x 1/2.5/5/10 Gigabit copper ports for flexible deployment
4 x built-in 40G/100G ports delivering high-speed backbone connectivity
Expansion bay to easily add more capacity
Multi-unit stacking for a future-proof network
DATA CENTRE PRODUCT OF THE YEAR
WINNER: Prism DCS - Hot Cold aisle Containment
RUNNER UP: ProLabs - 100G Green transceiver range
Prism DCS is a data centre solutions provider specialising in the provision of hot & cold aisle containment, server cabinets, and
security cages. Prism partner with leading data centre operators & global hyperscale providers to improve the efficiency, sustainability
and security of their operations.
Leveraging an in-house manufacture and installation service, Prism provide bespoke engineered solutions that empower clients &
end-users with strategic agility & flexibility in the development of critical digital infrastructure. www.prismdcs.co.uk
IT OPTIMISATION PRODUCT OF THE YEAR
WINNER: Kemp Technologies - LoadMaster LM-X15
RUNNER UP: Schneider Electric - EcoStruxure IT Next-Generation DCIM
The LoadMaster X15 delivers unparalleled performance for organisations of all sizes with integrated hardware acceleration and support for up
to 35 million concurrent connections. The dual power supplies and RAID disk drives offer a resilient platform for critical workloads while the 16
Gigabit Ethernet ports and four 10 Gigabit SFP+ ports provide for maximum connectivity.
TESTING / MONITORING PRODUCT OF THE YEAR
WINNER: NetAlly - EtherScope nXG
RUNNER UP: Netreo - Netreo (formerly OmniCenter)
Deploying and maintaining Wi-Fi and wired network infrastructure without the right tools can be daunting… and costly. The EtherScope nXG
enables engineers and technicians to get more done faster, from deployment to maintenance and documentation of their Wi-Fi and Ethernet access
networks. The winner of Network Computing Magazines Award for Best Testing/Monitoring Solution, the EtherScope nXG is the first Android-based
wired and wireless network analyzer. It has a dedicated set of Ethernet and Wi-Fi management interfaces which support remote control and
additional testing. Android apps, downloaded from the complimentary "Link-Live" Cloud Service, can use these interfaces for testing and
communication purposes. A lightweight, handheld, multi-function tester, EtherScope is perfect for remote site validation and troubleshooting,
eliminating the need to purchase multiple testers, and the need to carry a fragile laptop PC or tablet. Android apps make the user's workflow more
efficient, by expanding instrument use beyond testing, allowing the user to check trouble tickets, run speed tests, configure networked devices, and
more with its smartphone-like features. EtherScope nXG has been recently enhanced by the addition of the AirMapper Site Survey app which can
quickly and easily gather location-based Wi-Fi measurements to create visual heat maps in the Link-Live Cloud Service.
28 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

AWARDS
CLOUD TELEPHONY PRODUCT OF THE YEAR
WINNER: Natterbox - Natterbox
RUNNER UP: 8x8 - 8x8 Contact Centre
Natterbox is an expert voice solution for Salesforce-centric businesses that embeds voice into the world's #1 CRM. Enabling businesses to
provide personalised phone journeys, removing barriers of call queuing, misinformed agents and too many voice menus to navigate.
Natterbox is the telephony solution for Sales Cloud and Service Cloud with features like CTI, IVR, ACD, click-to-dial, call recording, call
routing, mobile, auto-logging and dialer.
STORAGE PRODUCT OF THE YEAR
WINNER: StorageCraft - OneXafe
RUNNER UP: Buffalo Technology - TeraStation TS6000
For nearly two decades, StorageCraft has been innovating advanced data management, protection and recovery solutions. Together with our
channel partners, we ensure medium and small organisations can keep their business-critical information always safe, accessible, and optimised.
Our customers benefit from category-leading intelligent data protection and management solutions, converged primary and secondary scale-out
storage platform and world-class cloud backup and DRaaS services. Regardless of whether an organisation relies on on-premises, cloud-based or a
hybrid IT environment, StorageCraft solves the challenges of exploding data growth while ensuring business continuity through best-in-class
rotection and recovery solutions.
For more information, visit www.storagecraft.com.
NETWORK MANAGEMENT PRODUCT OF THE YEAR
WINNER: Nectar Services Corp - Nectar 10
RUNNER UP: SolarWinds - NPM
As UC services are specified by business units they will assume that services will be consistently delivered to a high standard. This requires
the coalesced view that Nectar 10 provides, making this specialised solution invaluable for any organisation using or delivering UC-based
services. Where there can be no compromise, Nectar 10 provides impressive monitoring, diagnostics, forensics and reporting, with an
equally impressive product roadmap.
DATA PROTECTION PRODUCT OF THE YEAR
WINNER: Altaro - Altaro Office 365 Backup
RUNNER UP: Rohde & Schwarz Cybersecurity - R&S Trusted Gate
Altaro Office 365 Backup enables you to back up and restore all your Microsoft 365 / Office 365 mailboxes - emails, attachments,
contacts and calendars - and files stored within OneDrive and SharePoint through a centralised online console, on an annual subscription,
allowing you to easily manage your backups. Altaro Office 365 Backup automatically backs them up and saves them to a secure cloud
backup location on Altaro's Microsoft Azure infrastructure. This means you avoid the hassle and expense of setting up any local storage
infrastructure or software to save backups to. Storage is unlimited.
Altaro Office 365 Backup also provides various restore options and includes 24/7 lightning-fast support.
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards
JANUARY/FEBRUARY 2021 NETWORKcomputing 29

AWARDS
SD-WAN VENDOR OF THE YEAR
WINNER: Silver Peak
RUNNER UP: Citrix
Silver Peak, recently acquired by Aruba, a Hewlett Packard Enterprise company, helps businesses to realise the true transformational promise
of the cloud, enabling them to shift to a business-first networking model. Powered by a self-driving wide area network (SD-WAN Edge
Platform), companies are liberated from the compromises of router-centric and basic SD-WAN approaches to transform their networks into
a business accelerant.
With Unity EdgeConnect physical, virtual and cloud-based appliances, Silver Peak powers a new business-first networking model where top-down
business intent is the driver, not bottoms-up technology constraints.
CLOUD-DELIVERED SECURITY SOLUTION OF THE YEAR
WINNER: Proficio - Managed SOC
RUNNER UP: iBoss - iBoss Cloud Internet Security
Proficio provides managed detection and response (MDR) services to enable our clients to reduce risk, meet their security and compliance goals,
and maximise their investments in security technology. Since its inception in 2010, Proficio has grown rapidly and today provides 24/7 security
monitoring, investigation and alerting capabilities from our global network of SOCs.
Proficio's team of experienced cyber professionals use AI and cloud technologies to hunt for targeted attacks, rapidly alert clients to critical
threats, and automate containment of attacks before they cause damage. Proficio is recognised in Gartner's Market Guide for MDR Services
four years in a row.
THE RETURN ON INVESTMENT AWARD
WINNER: Pulse Secure - Pulse Access Suite Plus
RUNNER UP: e-bate - e-bate
Pulse Access Suite Plus provides organisations a simplified, modular and integrated approach to secure access. It delivers adaptive identity and
device authentication, protected connectivity, extensive visibility and analytics, threat response and high availability. The integrated platform allows
enterprises to gain easy secure access for users and a single-pane-of-glass to streamline provisioning, management and scalability.
Organisations can centrally orchestrate Zero Trust policy to ensure compliant access to applications, resources and services across their network,
private cloud and public cloud. As a result, enterprises realize lower total cost of ownership while attaining procurement, deployment, expansion and
support advantages.
NEW HARDWARE PRODUCT OF THE YEAR
WINNER: Datacore Software - HCI Flex
RUNNER UP: Allied Telesis - TQ5403 Hybrid AccessPoint
DataCore has a fine reputation in the software-defined storage (SDS) market and has made a bold move into hardware solutions with its HCI-Flex
hyperconverged infrastructure appliances.
Offered in small, medium and large configurations, the HCI-Flex appliances are turnkey solutions combining virtualisation, storage and compute
services, all within a single platform. HCI-Flex aims to reduce support costs and complexity and DataCore offers a single point of contact for all
hardware and software components.
HCI-Flex delivers a versatile and scalable HCI solution and integrates tightly with DataCore's Insight Services (DIS) cloud platform. This presents a
single pane of glass for monitoring the entire storage infrastructure.
30 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

AWARDS
NEW SOFTWARE PRODUCT OF THE YEAR
WINNER: Rohde & Schwarz Cybersecurity - R&S Trusted Endpoint Suite
RUNNER UP: Veritas Technologies - Information Studio
R&S Trusted Endpoint Suite by IT security expert Rohde & Schwarz Cybersecurity is a new software-based solution for endpoint devices, which
has been developed to process critical data at the classification level VS-NfD (RESTRICTED).
The security suite for remote end devices running on the Windows 10 platform does not require any special hardware and specifically
addresses public authorities, organisations and companies that work with classified content. R&S Trusted Endpoint Suite is comprised of a
high-security VPN Client, a high-security full disk encryption and a high-security browser.
NEW CLOUD SOLUTION OF THE YEAR
WINNER: ThousandEyes - Internet Insights
RUNNER UP: Allied Telesis - AMF Cloud
ThousandEyes Internet Insights is the first and only collectively powered view of global Internet performance. Powered by an unmatched number of
global vantage points across Internet-related networks, Internet Insights analyses billions of service delivery paths in real-time to identify where
business-impacting outages are occurring. These insights enable enterprises and service providers to immediately see issues that directly or indirectly
impact users, accurately measure scope, accelerate the remediation process and confidently communicate what's causing service issues to
customers and employees.
By visualising and correlating outages to user experience, enterprises can dramatically reduce Mean Time To Identify (MTTI) from hours to minutes.
NETWORKS ON THE EDGE AWARD
WINNER: Silver Peak
RUNNER UP: IBM
Silver Peak Unity EdgeConnect is the industry's only business-driven software-defined WAN (SD-WAN) edge platform that enables enterprises to
build a modern WAN that drives maximum value from ongoing cloud and digital transformation investments, delivering a multiplier effect.
EdgeConnect is the industry's only SD-WAN edge platform to unify SD-WAN, firewall, segmentation, routing, WAN optimisation and application
visibility and control in a single centrally managed system. Delivered as physical, virtual or cloud-based appliances, EdgeConnect enables
distributed organisations to securely and directly connect users in branch and remote sites to applications wherever they reside.
SALES ENABLEMENT SOLUTION OF THE YEAR
WINNER: 8x8 - 8x8 Contact Center
RUNNER UP: webCRM - webCRM
RESELLER OF THE YEAR
WINNER: Axial
RUNNER UP: Holker IT
PRODUCT OF THE YEAR
WINNER: Dell EMC - PowerEdge MX
RUNNER UP: Natterbox - Natterbox
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards
JANUARY/FEBRUARY 2021 NETWORKcomputing 31

AWARDS
EDUCATION AND TRAINING PROVIDER OR THE YEAR
WINNER: Knowbe4
RUNNER UP: CNet Training
KnowBe4, the provider of the world's largest security awareness training and simulated phishing platform, is used by more than 35,000
organisations around the globe. Founded by IT and data security specialist Stu Sjouwerman, KnowBe4 helps organisations address the human
element of security by raising awareness about ransomware, CEO fraud and other social engineering tactics through a new-school approach to
awareness training on security.
Kevin Mitnick, an internationally recognised cybersecurity specialist and KnowBe4's Chief Hacking Officer, helped design the KnowBe4 training
based on his well-documented social engineering tactics.
Tens of thousands of organisations rely on KnowBe4 to mobilise their end users as the last line of defence.
DISTRIBUTOR OF THE YEAR
WINNER: Datasolutions Distribution
RUNNER UP: Brigantia
DataSolutions has developed into a specialist distributor of innovative IT solutions. We've worked across many different types of technology, such
as mobility, virtualisation, security, networking, hyperconvergence and enterprise cloud. We invest heavily in training, which is why we can offer
first-class technical support and an innovative approach to marketing for all our vendors. Since 1991, we've built strong relationships with all of
our vendor partners and they know that they can rely on us to help them achieve serious growth.
We believe in creating and maintaining close relationships with all our partners so that, by working together, we can all achieve the goals that
we set. We've got a strong track record in delivering real, tangible results for all kinds of resellers, both established and emerging.
THE CUSTOMER SERVICE AWARD
WINNER: webCRM
RUNNER UP: Prism DCS
webCRM is the future of customer relationship management. Our award-winning service provides you with an integrated business solution that
will be adapted to the bespoke requirements of your business.
Increase revenue through targeted marketing campaigns and pipeline management. Improve how you operate by creating an easy-to-use
system that integrates seamlessly with a plethora of products such as Office 365 and Sage. Increase retention by improving how you connect
with your customers. Monitor employee performance through in-depth reporting. Easily analyse and report on sales by creating automated
charts. And that's just the beginning.
HARDWARE PRODUCT OF THE YEAR
WINNER: ExaGrid - EX63000E
RUNNER UP: SonicWall - TZ Series
ExaGrid provides tiered backup storage with a unique disk-cache Landing Zone, long-term retention repository, and scale-out architecture. The
EX63000E is ExaGrid's largest-capacity model, which is sized for up to 63TB capacity for weekly full backups as well as long-term retention.
ExaGrid offers various-sized appliance models that can be mixed and matched with up to 32 appliances in a single scale-out system.
The largest system can take in up to a 2PB full backup with an ingest rate of 432TB/hr. This is 3X faster than any other backup storage on
the market.
32 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

AWARDS
SOFTWARE PRODUCT OF THE YEAR
WINNER: Allied Telesis - Vista Manager EX
RUNNER UP: Silver Peak - Unity EdgeConnect
Vista Manager EX from Allied Telesis delivers state-of-the-art monitoring and management for wired and wireless networks. It automatically creates a
complete topology map of switches, firewalls and wireless APs, to enable effortless management. The Software Defined WAN (SD-WAN)
orchestrator enables centralised optimisation of WAN traffic.
Improve visibility and control of your network with Single pane-of-glass management, delivering:
Reduced network operating costs with added intelligence and automation
Ability to analyse and optimise the performance of complex wireless networks
Monitoring and management of a broad range of devices
Central management and automatically optimised inter-branch traffic
CLOUD BASED SOLUTION OF THE YEAR
WINNER: Natterbox - Natterbox
RUNNER UP: Zscaler - Zscaler Cloud Security Platform
Natterbox was founded with the aim of facilitating better, more aligned business conversations. We're passionate about the value of talking to
another person, but recognise that, too often, unintuitive technology or insufficient information gets in the way of genuine human connection. Our
vision is to bring together the enduring power of the human voice with the efficiency of digital technology to transform the world one conversation
at a time.
Over 600 organisations around the world rely on Natterbox to set new standards in customer experience to drive measurable increases in sales
and service efficiency, competitive advantage and organisational success.
BENCH TESTED PRODUCT OF THE YEAR- SOFTWARE AND SERVICES CATEGORY
WINNER: Rohde & Schwarz - R&S Cloud Protector
R&S Cloud Protector offers a simple and fully scalable WAF SaaS security solution. Cloud computing is rapidly gaining in importance and places
new demands on IT security. R&S Cloud Protector, the cloud-based Web Application Firewall from Rohde & Schwarz Cybersecurity, was specially
developed to protect the application layer in the cloud. It effectively protects web applications from the most common cyberattacks while conserving
key internal resources.
R&S Cloud Protector uses security mechanisms, including heuristics, grammar analysis and IP address checking. This prevents cyberattacks (such as
the OWASP Top 10) on websites, web applications, backends and cloud environments.
BENCH TESTED PRODUCT OF THE YEAR -HARDWARE CATEGORY
WINNER: ZPE Systems - Nodegrid Services Router
The Nodegrid Services RouterTM (NSR) is the only 1U appliance that can replace up to six devices. With a multi-core Intel CPU and add-on
expansion modules, the NSR serves as a serial console, Ethernet switch, firewall, router, cellular gateway, and more.
This all-in-one device uses guest OS and docker applications to optimize your stack and scale alongside your needs, whether you're looking to
improve out-of-band management, deliver converged infrastructure, or boost efficiency with automation. The NSR offers total networking
flexibility - inside & out.
WWW.NETWORKCOMPUTING.CO.UK @NCMagAndAwards
JANUARY/FEBRUARY 2021 NETWORKcomputing 33

AWARDS
NETWORK PROJECT OF THE YEAR
WINNER: The Stephen Lawrence Charitable Trust / Zyxel
Non-profit organisation, the Stephen Lawrence Charitable Trust, helps disadvantaged young people make informed choices about their education
and careers. The trust recognised the need to transform its London centre into a coworking space with a faster, more stable network and
approached IT support provider, Vibrant Networks, for help. After assessing the centre's needs, Vibrant advised the deployment of the
Zyxel Nebula system, along with access points and a switch to provision a fast and secure network.
Since installing the Zyxel Nebula system the Wi-Fi is stronger, faster and more reliable. The network has been able to support more users.
Thanks to extra revenue generated through coworking,the trust has been able to spend more on the important work it does for young people.
THE ONE TO WATCH COMPANY - CATEGORY SPONSORED BY EXAGRID
WINNER: e-bate
RUNNER UP: EfficiencyIT
As a team of technologists and pricing specialists in award-winning Evolve-IT Consulting Limited, we had built bespoke rebate solutions
for seven years, across multiple sectors. We recognised that there was a gap in the market for an affordable solution that helped decision
makers digitise their rebate process within weeks and regain control.
In 2018, the calculation engine IP was transferred to e-bate Limited and a full end-to-end SaaS solution that offers a great user experience
was created. e-bate is highly configurable and can be implemented in as little as 16 weeks. Our team is passionate about customer service
and achieving results for our clients.
THE INSPIRATION AWARD
WINNER: Andrew Stevens - CNet Training
RUNNER UP: Ian Moyse - Natterbox
Andrew has been involved in the international telecommunications and data centre industries for the past 26 years, starting his career within the
manufacturing and distribution arenas. He joined CNet Training in 1997 as Sales Director and has been CEO since 2004. Andrew has always
been an active member of numerous industry trade bodies including the AFCOM, TIA, Uptime Institute, Green Grid, BCS and DCA. He created
the global data centre education framework and has been instrumental in the development of the only truly mapped qualifications and
certifications for the data centre industry.
Andrew has also been awarded a number of industry accolades for his work including the legacy associated with working with the ODA
Employment & Skills Team for the 2012 Olympic Delivery Authority, educating unemployed individuals with the Certified Network Cable Installer
(CNCI®) certification and, as a result, providing certified network cable installers to the Olympic project. Today the CNCI® certification has
been adopted by the industry as the standard certification for network cable installers.
Andrew has also accepted an invitation to become a Trustee of the Edge Foundation, an independent education charity dedicated to raising
the status of technical, practical and vocational learning via UTC's and Career Colleges.
COMPANY OF THE YEAR
WINNER: ExaGrid
RUNNER UP: Allied Telesis
ExaGrid provides the industry's only Tiered Backup Storage solution. Its disk-cache Landing Zone for backup and restore performance is
tiered to a long-term retention repository for cost efficiencies as well as a scale-out storage architecture that scales as data grows.
ExaGrid supports more than 25 backup applications and utilities heterogeneously in an environment, so that customers can retain their
investment in existing backup processes. ExaGrid's 330+ published customer success stories demonstrate how satisfied customers are with
ExaGrid's unique architectural approach, differentiated product, and unrivalled customer support. Customers consistently state that not only
is the product best-in-class, but 'it just works.'
34 NETWORKcomputing JANUARY/FEBRUARY 2021 @NCMagAndAwards
WWW.NETWORKCOMPUTING.CO.UK

We’re all vulnerable,
we’re all
human
No matter how savvy we think we are, we’re
all vulnerable to being duped or making a mistake
– and that’s the thing that criminals rely on in
every cyber-attack or data breach.
At Capita, we understand that people –
whether it’s the employee who accidentally
falls for a phishing scam or the IT team
tasked with protecting them – are the one
constant in a complex world of constantly
evolving cyber threats.
Because recognising that we’re all human
is the strongest protection there is, we look
closer at your people, pay closer attention to
the gaps in your security and go the extra mile
to uncover what you’ve missed – to deliver
deeper security.
Discover how to manage the human
impact on your cyber defences at
content.capita.com/cyber