Story image

Five ways you can establish robust security architecture

02 Aug 16

Ixia claims that organisations planning to upgrade or migrate to next-generation firewalls have a great opportunity to gain richer functionality and a wide range of protections.

The security solutions company says that right now is an excellent time for a business to review its security structure to ensure it maximises the value and efficiency of all security devices.

Jeff Harris, VP, Solutions Marketing of Ixia, says that prevention is always better than cure, but that’s not always the case.

“Too many organisations rely on security measures that only kick in after an attack has successfully breached their architecture. Instead, they should focus their security efforts on finding ways to prevent attacks from happening at all,” says Harris.

“This prevents costly downtime and keeps the organisation running efficiently.” 

According to Ixia, there are five key actions that organisations can review to ensure their security architecture maximises protection and efficiency: 

1. Scan for potential points of failure to reduce the risk of downtime 
Businesses should examine their overall architecture and identify potential points of failure or performance issues. It’s important to avoid serial inline deployment, where traffic is passed from one security appliance to another. A failure in any single device could stop traffic flow and cause a network outage. 

2. Implement efficient load balancing 
Pairing the bypass switch with a network packet broker (NPB) lets security staff see and inspect network packets, and route them only to the appropriate appliances. This intelligence-based traffic balancing reduces the unnecessary processing burden on individual appliances, making them more efficient and less likely to fail. 

3. Construct smart security configurations for high availability 
Bypass switches and NPBs must be configured for optimum availability, which delivers high availability during normal operations while fully protecting traffic if and when a device goes down. 

4. Use filtering tools to improve network visibility 
Visibility is crucial within the network to minimise blind spots. NPBs provide a comprehensive view of the network environment, capturing and aggregating traffic, eliminating data duplication, and stripping away unnecessary detail. They can also pre-filter known bad traffic, so security staff can make intelligent decisions about what traffic to block. 

5. Future proof the security architecture 
Future-proofing security architecture with high-speed bypass switches and powerful NPBs will eliminate network downtime caused by unplanned device failure, deployments, maintenance, or upgrades. It also lets businesses maximise uptime for security infrastructure, reducing the load on security appliances and extending their lifespans, while generating efficient traffic analysis. 

Harris adds that it can be difficult for organisations to determine what the right architecture looks like, and how they should go about building it into their network.

“These five key actions will help IT professionals in organisations ensure the security architecture maximises the company’s overall security and its efficiency,” says Harris.

"Prevention is better, and cheaper, than a cure. Particularly when it concerns the organisation’s security.”

Kiwis losing $24.7mil to scam calls every year
The losses are almost five times higher compared to the same period last year, from reported losses alone.
How to configure your firewall for maximum effectiveness
ManageEngine offers some firewall best practices that can help security admins handle the conundrum of speed vs security.
Exclusive: Why Australian enterprises are prime targets for malware attacks
"Only 14% of Australian organisations are continuously training employees to spot cyber attacks."
Exclusive: Why botnets will swarm IoT devices
“What if these nodes were able to make autonomous decisions with minimal supervision, use their collective intelligence to solve problems?”
"Is this for real?" The reality of fraud against New Zealanders
Is this for real? More often than not these days it can be hard to tell, and it’s okay to be a bit suspicious, especially when it comes to fraud.
Why you should leverage a next-gen firewall platform
Through full lifecycle-based threat detection and prevention, organisations are able to manage the entire threat lifecycle without adding additional solutions.
The quid pro quo in the IoT age
Consumer consciousness around data privacy, security and stewardship has increased tenfold in recent years, forcing businesses to make customer privacy a business imperative.
Kordia launches Women in Tech scholarship at the University of Waikato
The scholarship is established to acknowledge and support up-and-coming female talent and future technology leaders.