Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      A history of the decoders made by M-Net and DStv

      30 November 2023

      How South Africa’s banks became bakgat

      30 November 2023

      Putin’s daughter pursues digital plan in push to embrace Africa

      30 November 2023

      MTN slashes prepaid data prices: 200GB for R399

      30 November 2023

      Spar confident worst of ERP disaster now behind it

      30 November 2023
    • World

      ‘Go f… yourself’: Musk lashes out at fleeing advertisers

      30 November 2023

      Microsoft to take non-voting position on OpenAI board

      30 November 2023

      Hackers stole customer support data in Okta breach

      29 November 2023

      Orange withdraws from process to buy into Ethio Telecom

      28 November 2023

      Musk’s X hit by advertiser exodus

      27 November 2023
    • In-depth

      Africa has a feature phone problem

      23 November 2023

      Is your ISP monitoring your online activity?

      10 November 2023

      The real Big Brother Africa

      2 November 2023

      Compared: Starlink prices around the world – including Africa

      30 October 2023

      Africa is booming

      30 October 2023
    • TCS

      TCS+ | OneTrust’s Joseph Byrne: privacy risk management done right

      29 November 2023

      TCS+ | Ricoh – safe and secure role in today’s digital ecosystems

      27 November 2023

      TCS+ | NEC XON on going toe to toe with cybercriminals

      22 November 2023

      TCS | How ShotSpotter is fighting gun crime in Cape Town

      13 November 2023

      TCS+ | SOC-as-a-service: CYBER1 SOC and the future of cybersecurity

      13 November 2023
    • Opinion

      Could Cape Town become Africa’s Silicon Valley?

      14 November 2023

      Chris Kruger: What I learnt in my decades in IT leadership

      6 November 2023

      Ransomware attacks: how South African companies should respond

      6 November 2023

      Fibre providers urged to go ‘nano’ to cut costs

      31 October 2023

      Big banks, take note: PayShap should be free

      20 October 2023
    • Company Hubs
      • 4IRI
      • Africa Data Centres
      • Altron Document Solutions
      • Altron Systems Integration
      • Arctic Wolf
      • AvertITD
      • CallMiner
      • CoCre8
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • E4
      • Entelect
      • ESET
      • Euphoria Telecom
      • iKhokha
      • Incredible Business
      • iONLINE
      • LSD Open
      • Maxtec
      • MiRO
      • NEC XON
      • Next DLP
      • Paratus
      • Ricoh
      • Skybox Security
      • SkyWire
      • Velocity Group
      • Videri Digital
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud computing
      • Consumer electronics
      • Cryptocurrencies
      • E-commerce
      • Education and skills
      • Energy
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Metaverse and gaming
      • Motoring and transport
      • Open-source software
      • Public sector
      • Science
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Sections » Information security » A software-defined perimeter enables the most comprehensive zero-trust strategy

    A software-defined perimeter enables the most comprehensive zero-trust strategy

    Promoted | The traditional perimeter-based security model is no longer effective, writes CYBER1 Solutions MD Jayson O'Reilly.
    By CYBER1 Solutions9 May 2023
    Facebook Twitter LinkedIn WhatsApp Telegram Email

    As the world moves increasingly to remote and hybrid work, a growing number of smart devices connect to the internet of things (IoT), and as companies adopt a “cloud-first” approach, security teams are battling to secure multiple access points.

    These challenges are amplified by a culture of “bring your own everything” – be it device, application or connection – have made it more challenging for organisations to secure their users, networks and data.

    The traditional perimeter-based security model is no longer effective, driving businesses to adopt a newer, more effective approach to cybersecurity. One such approach is the software-defined perimeter (SDP), which enables the most comprehensive zero-trust strategy.

    Traditional security models are inadequate

    Historically, the perimeter was the main focus of cybersecurity. It utilised a range of tools such as firewalls, intrusion detection and prevention systems, and other network security technologies that acted as sentinels at the gate, enforcing a castle-and-moat approach that ensured that all bad actors and traffic were kept out.

    However, with the rise of cloud computing and distributed workforces, the perimeter has become porous and fluid, rendering traditional security models ineffective.

    Attackers can easily bypass perimeter security by using stolen credentials or other methods, and with social engineering growing increasingly sophisticated, getting their hands on these credentials isn’t too difficult either.

    A zero-trust approach

    This dissolving perimeter saw the rise of the zero-trust security model that assumes that every device, service and user on the network is untrusted. With zero trust, anyone attempting to access business resources, even individuals already inside the network, is not automatically trusted.

    In this way, every time a user requests access they are verified, even if they were authenticated a few minutes before. No access to network resources is granted by default, and access is only granted on the principles of least privilege, ensuring that users access only what they strictly need to do their jobs.

    With zero trust, several key principles that are based on the NIST guidelines are addressed, such as continuous verification, by always verifying access, every time and for all resources. In addition, it limits any potential fallout, minimising exposure and impact should an internal or external breach occur. Finally, it automates context collection and response, harnessing behavioural data and getting context from the full IT stack to ensure the best response.

    The zero-trust model employs several layers of security controls, including authentication, authorisation and encryption.

    The software-defined perimeter

    The SDP is a network architecture that implements zero-trust principles to provide more secure remote access than virtual private networks.

    This approach controls access to resources based on identity and forms a virtual boundary around all resources that are networked. By building a perimeter through software instead of hardware, an SDP can obscure an entity’s infrastructure from malicious outsiders, irrespective of where it is located.

    In this way, an SDP helps shrink the attack surface and prevent or mitigate internal and external network security threats. Much like zero trust, SDP works on the principles of “verify first, access after”, which means that access is only granted after the user and device have been authenticated and authorised.

    SDP employs a range of security controls, including multifactor authentication, device profiling and encryption to create a secure network perimeter. It also uses a dynamic access model, which means that access to network resources is only granted for the duration of the session and is revoked when the session ends.

    A comprehensive zero-trust strategy

    Moreover, SDP enables the most comprehensive zero-trust strategy possible by providing a dynamic and flexible security model that can be applied to any network or application. The approach is not limited to a specific network or device, which means that it can be used to secure cloud, on-premises and hybrid environments.

    SDP also provides a granular level of access control, meaning that access is only granted on a strictly need-to-know basis. Again, this reduces the attack surface and minimises the risk of a security breach. With SDP, real-time visibility into network activity is gained, which enables security teams to detect and respond to security incidents quickly.

    Flexibility and scalability

    Finally, SDP also offers a high level of scalability and flexibility. It can be deployed quickly and easily, and it can be used to secure networks and applications of any size and complexity, making it an ideal solution for businesses in every industry, from the smallest companies to their giant corporate counterparts.

    For all these reasons, by adopting SDP, organisations can improve their overall security posture and reduce their risk of a security breach.

    About CYBER1 Solutions
    CYBER1 Solutions is a cybersecurity specialist operating in Southern Africa, East and West Africa, and Dubai, and elsewhere in the Europe, Middle East and Africa region.

    Our solutions deliver information security; IT risk management; fraud detection; governance and compliance; and a full range of managed services. We also provide bespoke security services across the spectrum, with a portfolio that ranges from the formulation of our customers’ security strategies to the daily operation of endpoint security solutions. To do this, we partner with world-leading security vendors to deliver cutting-edge technologies augmented by our wide range of professional services.

    Our services allow organisations in every sector to prevent attacks by providing the visibility into vulnerabilities they need to rapidly detect compromises, respond to breaches and stop attacks before they become an issue.

    For more information, visit www.c1-s.com.

    • The author, Jayson O’Reilly, is MD of CYBER1 Solutions
    • Read more articles by CYBER1 Solutions on TechCentral
    • This promoted content was paid for by the party concerned
    CYBER1 Solutions Jayson O'Reilly SDP software-define perimeter Zero Trust zero trust security
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email
    Previous ArticleHow conversation and speech analytics can achieve enterprise-wide benefits
    Next Article Clearing the fog around investing in crypto

    Related Posts

    A history of the decoders made by M-Net and DStv

    30 November 2023

    ‘Go f… yourself’: Musk lashes out at fleeing advertisers

    30 November 2023

    How South Africa’s banks became bakgat

    30 November 2023
    Add A Comment

    Comments are closed.

    Promoted

    5G home broadband a big opportunity for African operators

    30 November 2023

    DCA, Huawei and WBBA host Africa Fibre Forum 2023

    30 November 2023

    Accelerate innovation with platform engineering

    30 November 2023
    Opinion

    Could Cape Town become Africa’s Silicon Valley?

    14 November 2023

    Chris Kruger: What I learnt in my decades in IT leadership

    6 November 2023

    Ransomware attacks: how South African companies should respond

    6 November 2023

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2023 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.