By Shelley Wilson TechNewsWorld Part of the ECT News Network
04/19/05 5:00 AM PT
Internal security attacks can happen either maliciously or inadvertently. But regardless of what prompts an internal security breach, one thing is for certain: The impact of internal security issues causes negative results on an organization from both a technical and business perspective.
eMarketer Whitepaper: Optimizing the E-Commerce Experience
From the Web to the Contact Center, are you prepared to proactively engage and keep your savvy customers? Read how e-commerce leaders are optimizing their sites with ratings, reviews, live help, Web analytics, mobile and more.
For too long now we've seen security threats have a negative impact on internal
networks, and as a result, a harmful effect on employee and company productivity. And
for far too long, enterprises of all sizes have neglected to focus enough resources and
energy on securing these valuable internal network resources.
In 2004, a quiet revolution began. And this year, the information technology industry will
see this phenomenon further evolve as organizations begin to focus on securing their
internal networks with the same vigor they have applied at the perimeter.
Focused Effort
Internal security refers to a focused effort to secure resources on internal networks, or
LANs. These resources can include applications, data, servers, and endpoint devices.
Meta Group has observed that "only 10-20 percent of organizations with relatively mature
security programs have managed to address internal security to a meaningful extent."
Internal security attacks can happen either maliciously or inadvertently. But regardless
of what prompts an internal security breach, one thing is for certain: The impact of
internal security issues causes negative results on an organization from both a technical
and business perspective.
Why is internal security finally becoming a priority? First, there are business drivers prompting more focus on internal security. Around the globe, companies are being forced to comply with regulations that ensure the privacy of customer data and the security of intellectual property that resides on internal networks. These regulations drive an increased need for internal security.
Second, there is increased awareness about internal hacking. Organizations can no
longer take a "don't look, don't tell" approach. Instead, many are now required to
provide proof that they are continuously looking for internal hackers. How large has the
internal hacking threat become? The CSI/FBI Computer Crime and Security Survey
showed that 66 percent of organizations suffered an insider attack in 2003.
Financial Impact
At the same time, the financial impact of worm and other new types of destructive threats
has increased and become more visible in the industry. Having the ability to protect
against and contain worms, is perhaps the No. 1 problem driving the investment in internal security solutions. It is estimated that the Slammer worm alone resulted in more than $1billion in damage, for example.
Furthermore, as security vulnerabilities in software have become more proactively
communicated by Microsoft (Nasdaq: MSFT) and other sources, the timeline from vulnerability to exploit
is shrinking. The time to patch the announced security holes remains ever-present -- and
just takes too long. So companies are searching for ways to protect their LAN resources
during this period of susceptibility - until the holes can be filled with properly patched
software.
Lastly, IT organizations have realized that endpoint devices -- whether a personal
computer, PDA or other device, must be as secure on LANs as they are when connecting
from outside the perimeter (such as on a VPN connection.) Once these endpoints are
secure internally as well as externally, they will no longer inadvertently introduce
malicious code and other security threats.
How Enterprises Will Begin To Focus
Companies of all sizes are beginning to shift their attention to the topic of internal
security. They are starting to initiate change in how they protect resources on the LAN,
and in turn, protect their employees' productivity. Once an organization is convinced they should invest time, money and resource on internal security their first step focuses on adding an extra layer of defense within their networks, including:
Securing endpoints
Implementing an additional layer of protection specifically for worm defense
Enforcement of proper use through well articulated security policy
Quarantine capabilities for isolating infected devices
Segmenting LANs for threat containment
Remediation assistance
The Revolution Has Begun
2005 is the year of internal security. A combination of business and technology drivers
are triggering this revolution, including worm outbreaks, privacy regulations, reduced
windows of time to react and a multitude of new types of threats. There are simple steps
organizations can take to get started on protecting their internal network resources.
For the organizations who make these moves, in 2005 they will reap the benefits of having more secure and stable LANs, and in turn, a more productive workforce.
Shelley Wilson is a director at Check Point Software Technologies, Ltd.,
responsible for Solutions Marketing.
How Linux Saved Microsoft April 18, 2005
Think about it: For decades we have surveyed companies and for decades, except for those who are actually in the software business, the vast majority have said they don't want to be in the software business. Yet open source, as it is supposed to be practiced, puts you squarely in the software business.
Related Stories
Skybox Security Introduces Worm Prediction Software March 26, 2005
To meet the heightened threats posed by worms, Skybox View takes a different approach than other security software. Its recently released ENHANCED software shifts to a pre-attack defense strategy by predicting which network vulnerabilities can be exploited based on behavior patterns of worms.
Network Security Now Comes with Guarantees, Options March 12, 2005
"We took more than two years to develop this concept. It reverse engineers the content of everything that filters through our security appliance to check for infections," Finjan Software founder and CEO Shlomo Touboul said in announcing the Vital Security Appliance products.
Computer Security Comes of Age February 19, 2005
A new generation of security-minded desktop and laptop computers is giving new marketing life to the IBM Personal Computing Division. Add to this new line an innovative, out-of-the-box approach to user authentication, and computer security takes on a much safer atmosphere.
The IT Security Paradox February 16, 2005
The stampede toward endpoint security comes as hackers move beyond digital joy-riding and seek financial gain. Indeed, today's hackers are trying to infiltrate systems -- particularly endpoint systems or network holes -- and potentially profit from them.
Microsoft Buys Enterprise Security Firm February 08, 2005
The acquisition of Sybari Software will give Microsoft customers access to "a server-level antivirus solution that delivers advanced file and content-filtering capabilities and the use of multiple scan engines," Mike Nash, corporate vice president of the Security Business and Technology Unit at Microsoft, added.
Headline Feeds
Talkback: 
