CS Nov-Dec 2023

More documents

Recommendations

Info

product review HORNETSECURITY 365 PERMISSION MANAGER Microsoft 365 (MS365) is the productivity and communications platform of choice for organisations of all sizes, with it already having reached a staggering 382 million paid seats this year. A huge number of companies, including those with hybrid working practices, clearly see the benefits of MS365 cloud collaboration services; but ensuring adequate protection of information assets, and preventing unauthorised and anonymous access, can be a major challenge. Hornetsecurity's 365 Permission Manager is the perfect solution, as it provides administrators with all the tools needed to control access permissions, monitor violations and enforce compliance policies. Easily managed from a single cloud portal, it readily allows organisations to ensure compliance with internal and external regulations, and maintain access policies across sharing sites, folders and files. Onboarding is very swift, as you simply select 365 Permission Manager from Hornetsecurity's Control Panel, provide all required tenant details and authenticate with your MS365 account. It avoids management issues with MS365 global administrators and potential permission creep, as it uses API connections and doesn't store any credentials. INFORMATIVE DASHBOARD The Control Panel presents a highly informative dashboard, with pie charts showing overall compliance health, plus separate ones for SharePoint, OneDrive and Teams. A time-filtered graph reveals fixed and approved violations, while others are provided for item-level and policy compliance, upcoming and overdue audits, and violation trends over time. You can also view your compliance policies and 365 Permission Manager does all the hard work for you, as it includes a set of predefined ones. These are all based on the ISO 27001 information security management systems standard, so applying them to your organisation will help you meet certification requirements. You can easily create custom policies and set internal and external sharing criteria, while, at the site level, you set external sharing levels for all people in your organisation, existing and new guests or anyone; apply default sharing links and permissions; and set guest access expiration times in days. Policies are a very powerful feature as, if any action violates them, administrators will receive an alert and an option to approve or fix them. SharePoint site and OneDrive account exploration reveals all entities and their applied policy, while colour-coded icons show if they are compliant. Further icons highlight if they have items with anonymous access granted, those that have organisation-wide access and with external user access permitted. Click the quick actions button and you will then be presented with five of the most powerful features of this service. With no more than three clicks, you can set an external sharing level for a Share- Point site or OneDrive account, clean up orphaned users, remove 'Everyone' permissions, revoke user or group access or set site permissions. There's much more, as 365 Permission Manager presents a 'To Do' list, with all policy violations that require your attention. The list can be filtered and, with one click, you can either approve the violation or fix it: you can fix site settings or 365 Permission Manager can automatically remove user access. As you'd expect, there are plenty of reporting tools provided, with options to generate ones for full site permissions, user and group access, and also external access. An activity log provides essential auditing for all administrative activities and the portal generates daily alert summaries, which can be sent to multiple recipients. MS365 rights management presents many pain points, as it is far too easy for users to share files across this platform and so difficult for administrators to stay in control. Hornetsecurity's 365 Permission Manager brings order to this rights chaos and gives administrators the power to effortlessly enforce policy compliance and ensure access to critical data is tightly locked down. Product: 365 Permission Manager Supplier: Hornetsecurity Web site: www.hornetsecurity.com Tel: +44 (0) 203 0869 833 Sales: sales@hornetsecurity.com Contact Hornetsecurity for pricing 10 computing security Nov/Dec 2023 @CSMagAndAwards www.computingsecurity.co.uk
zero trust CRUCIAL ROLE OF IDENTITY IN ZERO TRUST SECURITY ZERO TRUST ADOPTS A 'NEVER TRUST, ALWAYS VERIFY' PHILOSOPHY, WITH IDENTITY PLAYING A PIVOTAL ROLE security while allowing for flexibility and user productivity." Moreover, Zero Trust extends beyond the initial authentication process; it emphasises both continuous monitoring and adaptive authentication. In this context, identity is not a one-time verification, but an ongoing process. Users and devices are continually assessed for risk and access privileges can be adjusted in real time, based on changing circumstances. Global analyst Gartner estimates that more than 85% of organisations will embrace a cloud-first principle and over 95% of new digital workloads will be deployed on cloud-native platforms by 2025. This increasingly digital world accelerates cybersecurity threats, leading organisations to embrace new strategies to protect sensitive data and assets. The Zero Trust approach, with identity as the linchpin, has gained prominence among cybersecurity trends for organisations to mitigate emerging cyber risks and have better cyber hygiene, according to Brian Ramsey, VP of America, Xalient, and Jaye Tilson, field CTO, HPE Aruba Networking. "Traditionally, organisations relied on perimeter based security models that operated under the assumption that threats could be kept at bay by securing the network perimeter," they point out. "However, as cyberattacks became more sophisticated, it became clear that this approach was no Brian Ramsey (left) and Jaye Tilson: identity plays a pivotal role. longer effective. Attackers found ways to bypass these perimeter defences, rendering them inadequate." Zero Trust flips this model on its head by adopting a 'never trust, always verify' philosophy, they state. "In a Zero Trust environment, trust is never assumed, regardless of whether a user or device is inside or outside the corporate network. Identity plays a pivotal role in verifying and authenticating users and devices, ensuring that access to resources is granted based on their identity, permissions and the context of their request." They single out identity as being right at the heart of context-aware access control, a fundamental component of Zero Trust. "For example, a user attempting to access a critical database from an unfamiliar device and location may trigger additional authentication measures or even deny access entirely until their identity and intent are verified. This dynamic approach to access control enhances "For instance, if an authenticated user suddenly exhibits unusual behaviour patterns or attempts to access sensitive data outside of their usual work hours, the system can flag this as a potential security threat and prompt additional authentication or restrict access until the user's identity and intent are confirmed." In a Zero Trust environment, identity-centric threat detection and response are critical components. "By closely monitoring the behaviour and identity of users and devices, organisations can quickly detect and respond to suspicious activities. Identity-based threat detection enables security teams to identify unauthorised access attempts, insider threats, and other malicious activities that may go unnoticed in traditional security models. However, they also offer a few words of caution. "A mature, widely deployed?Zero Trust?implementation demands integration and configuration of multiple different components, which can become quite technical and complex. Success is highly dependent on the translation to business value. Our advice is to start small and evolve, making it easier to better grasp the benefits of a programme and manage some of the complexity, one step at a time." www.computingsecurity.co.uk @CSMagAndAwards Nov/Dec 2023 computing security 11
Page 1: Computing Security Secure systems,
Page 4 and 5: Secure systems, secure data, secure
Page 6 and 7: news Daniel Hofmann, Hornetsecurity
Page 8 and 9: ook review INSIDE THE REVOLUTION A
Page 12 and 13: 2023 CS Awards Magician Nick Einhor
Page 14 and 15: ansomware ENEMY NO 1 - IS THE CROWN
Page 16 and 17: ansomware Michael Smith, Vercara: r
Page 18 and 19: inside view RANSOMWARE THREATENS BA
Page 20 and 21: cybersecurity training DRIVING EMPL
Page 22 and 23: cyber awareness THE CRIME-BUSTING C
Page 24 and 25: cyber awareness Don Boxley, DH2i: t
Page 26 and 27: attacks offensive PHISHING ENTERS D
Page 28 and 29: attacks offensive Kennet Harpsoe, L
Page 30 and 31: artificial intelligence FAKING IT W
Page 32 and 33: data privacy WHAT DATA PRIVACY MEAN
Page 34 and 35: data privacy Edward Machin, Ropes &
Page 36: Computing Security Secure systems,

CS Nov-Dec 2023

Create successful ePaper yourself

Delete template?

Save as template?