Because HIP products lock down systems, you'll have to modify any change-control processes to include the modification of the HIP and the updating of the access-control policies when patching a protected system or application. Also, because everyday business applications are so complex, host security products must learn normal application behavior and how to enforce it.
Embrace the Desktop Firewall
The next line of defense is the desktop. If that's where the data is, shouldn't that be where the protection is concentrated? We lay out an asset-centric view in "Secure to the Core". If you don't have a desktop-firewall deployment for remote users, make it a priority. Properly configured desktop firewalls stop attacks from external users, and may be effective in combating the spread of worms by preventing the worm code from accessing network resources.
|
To realize the benefits of cloud-native software, an application must actually be cloud-native—designed to run in the cloud, interacting with disaggregated cloud services, fully manageable as code—to deliver the expected benefits.
By combining resources and expertise, the AI-Enabled ICT Workforce Consortium will offer a blueprint for how industries can adapt to an AI-dominated future.
IT leaders should heed the guidance of cybersecurity insurance providers who think businesses should prioritize security education, incident preparedness, regular internal audits, and ongoing vulnerability scanning and patching.
