Skip to main content

Securing Network Architecture - Part 1 | Optiv

December 01, 2011

Firewall
Today, securing a network cannot be fully accomplished with just a product or a solution. Rather, an in-depth holistic approach is required to protect business critical systems.

In order to protect critical business services and assets, organizations need to be confident that their network security architecture is providing a strong and comprehensive defense. The best way to manage network security risk is through a systematic, architectural approach that addresses the entire network and is built upon standard industry network security practices.

A Network Security Architecture assessment is an often-neglected practice that takes a back seat to other seemingly more pertinent projects within an organization. Today’s networks have morphed into an amalgam of disparate technologies and products that are more often than not stitched together to provide a service or meet a singular objective of the overall business. This results in a network that may lack the efficacy and harmony of technologies working in tandem — a hallmark of a secure, reliable and efficient network.

A proactive approach to securing a network includes periodically assessing its security and robustness. This is a valuable exercise that may provide profound insight into the risk exposure of an organization, addressing both malicious threats and poor design and execution.

A proactive approach to network assessment helps reduce the time and resources spent on remediation by identifying the risks and remediating gaps found in technologies, products and their implementation. The breadth of an architecture assessment and its evaluation within an organizationmay vary from design and architecture assessment, technology policy review, information security asset management practices and device configuration review. The analysis should identify the strengths and the weaknesses within the network architecture posture and should protect the business from unexpected costs due to security incidents and reduce compliance exposures. Furthermore, the resulting analysis should identify vulnerabilities and architecture weaknesses and recommend improvements to align a network with industry-recognized best practices.

Related Blogs

April 03, 2018

Escape and Evasion Egressing Restricted Networks – Part 2

Attackers and security assessors alike are utilizing a technique called domain fronting, which masks malicious command and control (C2) traffic. This ...

See Details

February 06, 2018

What Is SSL Web Inspection and Where Should It Occur? (Part 3)

In parts one and two of this blog series, I provided an overview of SSL web inspection, and dove deeper into how SSL inspection solutions work and met...

See Details

January 29, 2018

What Is SSL Web Inspection and Where Should It Occur? (Part 2)

Hardware will vary between vendors and even different models within a vendor’s catalog. Some models/vendors will offload complex CPU tasks (decryption...

See Details

How Can We Help?

Let us know what you need, and we will have an Optiv professional contact you shortly.


Privacy Policy

RELATED INSIGHTS

July 21, 2015

Network Security Solutions

Learn how we help protect your environment while maintaining connectivity.

See Details

December 01, 2011

Securing Network Architecture - Part 1 | Optiv

Today, securing a network cannot be fully accomplished with just a product or a solution. Rather, an in-depth holistic approach is required to protect...

See Details

April 02, 2010

Enterprise Management - Network Security Threats | Optiv

I visit lots of customer sites each year and see many security-related commonalities amongst them. At the top of this list, from a network security pe...

See Details

Stay in the Know

For all the latest cybersecurity and Optiv news, subscribe to our blog and connect with us on Social.

Subscribe

Join our Email List

We take your privacy seriously and promise never to share your email with anyone.

Stay Connected

Find cyber security Events in your area.