Using CSMA to ensure protection against cyberattacks
WITH the pandemic seemingly coming to a close and the world ready to go into a ‘new normal’ organizations continue to accelerate their digital initiatives, to cope with the expectations of a hybrid workplace and continued work-from-home, or work-from-anywhere scenarios.
A recent webinar, organized by Fortinet Philippines, discussed the cybersecurity mesh architecture (CSMA) as solution enterprises must consider for their securing their digital acceleration initiatives.
The webinar centered on answering two questions. What are the current trends businesses face in their digital acceleration efforts? And how can they secure their complex and distributed networks from cybercriminals?
A recent study by the Boston Consulting Group and The Network revealed that the work-from-anywhere setup is expected to continue as 89 percent of the 208,807 respondents across 190 countries prefer remote or hybrid work in the post-pandemic period.
To support this new working environment businesses began migrating the applications inside their on-premises data centers onto the Cloud environment and so on. This move was also done to cater to their consumers’ almost unrelenting digital needs–for speedy response and delivery. Such initiatives further expand digital attack surfaces, increase sophisticated cyber threats, and provide a complex ecosystem for every organization.
“These point products work in silos and represent a center of focus and expertise. Without integrating these security tools, it can lead to security sprawl that makes management difficult, disrupts visibility, and impedes an organization’s ability to act effectively to cyber threats,” Louie Castañeda, country manager of Fortinet Philippines told the participants at the “Secure Your Digital Acceleration with Fortinet Security Fabric.”
The webinar discussed that businesses could get solutions, such as Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR), to integrate these best-of-breed security tools. For instance, FortiSIEM unifies data collection and analytics from diverse information sources, including logs, performance metrics, security alerts, and configuration changes. Meanwhile, FortiSOAR centralizes tools and amplifies the efforts of security teams, empowering them to respond rapidly, automate tasks, and execute actions across the businesses’ security stack.
In the advent of more advanced and sophisticated threats, businesses need to adopt a broad, integrated, and automated cybersecurity mesh platform for robust, scalable, and manageable security deployments.
Adopting a CSMA
According to Gartner, the cybersecurity mesh is defined as “a modern conceptual approach to a security architecture that enables the distributed enterprise to deploy and extend security where it is most needed.”
“CSMA is not a solution or a product to be integrated. It is an architectural approach that organizations can adopt. It tries to solve long-standing challenges of distinct security tools by integrating them so they can collaborate and dynamically respond to cyberattacks,” Fortinet experts explain.
CSMA has three characteristics. It is agile as it provides a composable architectural approach to integrate security controls. It is distributed because it encourages and enables decentralized security controls to protect all attack surfaces while being collaborative, allowing for an environment to integrate composable security services and teams to interact and work with each other.
CSMA also has four layers to enable collaborative and agile cybersecurity for businesses.
The first one is security analytics and intelligence, a layer that combines different security tools’ data and insight to deliver deep threat analyses and the correct response to cyberattacks. Then, distributed identity fabric, a layer that provides critical identity services to manage increasing assets, devices, and identities. Next is consolidated policy and posture management, a layer enabling organizations to translate central policies to the native configurations of security tools. Finally, it also has consolidated dashboards, a layer that provides a single-pane-of-glass security system.
Make CSMA possible with the Fortinet Security Fabric
All these are aligned with the Fortinet Security Fabric, the industry’s highest-performing cybersecurity mesh platform that integrates all cybersecurity solutions to reduce management complexity and share threat intelligence. It provides broad visibility and protection of all digital attack surfaces to manage risks and delivers automated self-healing networks with AI-driven security for fast and efficient operations.
Fortinet provides a wide array of solutions across the Fortinet Security Fabric’s four pillars. It includes security-driven networking, zero-trust access, adaptive cloud security, and AI-driven security operations. It has FortiGuard Security Services that enables sharing and distribution of threat intelligence across Fortinet’s solutions and third-party technology partners.
Due to its Fabric Management Center, the security fabric also allows centralized management, logging, and reporting. And as Fortinet has more than 450 third-party technology partners that can integrate with its security fabric, it gives and supports a broad and open ecosystem, which breaks down technology and vendor silos.
“The CSMA is the proposed strategic security platform of Gartner. At Fortinet, we call this the Fortinet Security Fabric that enables deep visibility across all edges, centralized management of distributed solutions, consistent enforcement of policies, real-time global threat intelligence, automated responses, and open ecosystem,” Castañeda concluded. –with Raymond B. Tribdino