Hybrid Pathways的动态

Transcript

Hi everyone, it's Roland Cloutier, Global Chief Security Officer and Digital Enablement Executive back with another episode of Security Sparks Insights for Pros or series is sponsored by Hybrid Pathways, a new era company. Today I want to cover an ongoing issue in technology, Shadow IT. Simply put, Shadow IT means IT that isn't managed or business technology, asset systems, or services that aren't protected by your cyber risk or privacy teams. Perhaps it's within an R&D or a business unit itself. Often it's new technology that may not even have embedded security capabilities, but it is advancing the business. In some way, so it's used nonetheless. Over the past 10 years a lot of this has had to do with cloud migrations into next generation environments like cloud SaaS, Paas and low code. No code environments. Today we're seeing growth in a couple areas that I think are worth noting. The 1st is microservices. Microservices is the name given to two micro stacks of technology within cloud like environments that provide dynamic computer and application capabilities. You have to keep in mind that these services talk through a service mesh which is usually not instrumented with visibility or security controls. We often try to catch them at the edge. So masses of data can be transferred between services without controls, administrative access can happen within the mesh but not at a managed privileged level and application or transaction monitoring is often limited or not even available. This brings us to our next area, the outsourcing of core business functionality to SAS like services. Again, these are great opportunities for organizations to reduce their costs and. Improve the function of the technology in their environments. As the most business models are shifting from on Prem enterprise deployed services to SAS, the growth of an on demand use has added complexity and speed that doesn't keep up with the program capabilities of today's cyber programs. But the good news is that there are a few things that you can do to ensure you keep up with these shadow IT areas of opportunity as they evolve within your environment. The first idea is to work with your technology partners to understand their Rd. maps, what they need and what they are using today. The more you can get ahead, the less impactful migrating those technologies into a protected environment will be. Next, get transparency through continuous monitoring of key technologies, API expansions and traffic analysis technologies. This can provide insight to understanding anomalies or changes. In your technology environments, most of the time you'll be able to pick up on new technology, use external connections in brewing issues. Like I've said, you can't protect what you can't see. So prioritize visibility in microsec environments. Engage with micro seg specific technologies that are plugged into the mesh and give you the transparency you need. Utilize environmental visibility mapping technologies that help you define micro segmentation and data flow. Once you have that visibility, do a risk assessment of the issues that you will most probably. Mind like logging gaps or lack of visibility and data exchange discrepancies. From that, create the prioritized list of issues that you need to work with your business partners to prioritize in their everyday operations. Finally, work with your technology organizations and partners to enable centralized management, controls and response programs. Remember, your partners and internal customers are working just as hard for your business as you are. Sometimes they may seem like they're working against you, but most often they are enabling the business in a very different way. When we have to play catch up, do it in a planned and informed way and create a flexible operating environment to enable the migration of those shadow IT assets into a more protected status. And sometimes that takes time. Hopefully I've sparked some ideas for you and I'm looking forward to sharing the next episode with you soon.