Categories

Editor's Choice
Tech Jobs Network
News & Events
Access Control & Identity Management
AI & Data Analytics
Asset Management
Associations
Conferences & Events
Facilities & Building Management
Fire & Safety
Information Security
Infrastructure
Integrated Solutions
IoT & Automation
Perimeter Security, Alarms & Intruder Detection
Power Management
Products & Solutions
Security Services & Risk Management
Smart Home Automation 
Surveillance
Training & Education
Videos
Security by Industry Sector ▾








Print this page printer friendly version

Zero-trust security must include data backup and recovery

Issue 2 2022 Infrastructure

By Byron Horn-Botha, business unit head, Arcserve Southern Africa.

Who can you trust? The straight answer to that question is – nobody. Unfortunately, in today's digital world, the reality of the situation is that the old security maxim of 'trust but verify' is no longer adequate. We deal with borderless, global, mobile, hybrid and cloud-based environments where traditional security approaches do not work, and nobody is to be trusted, including employees, customers and partners.


Byron Horn-Botha.

The notion of a protective shield surrounding your organisation where interactions perceived as trusted and therefore safe, and exchanges outside of it are not safe, is outdated and naive. Zero Trust is a better approach and constitutes an antidote to stale security strategies because it demands organisations entirely remove trust from the equation by denying access to everyone.

Zero trust thinking

Zero Trust is not a specific technology or architecture. Instead, it's a new way of thinking that can help you achieve robust threat protection and gain next-level security. It is about evaluating the security posture of users based on location, device and behaviour to determine if they are who they claim to be. It is also about granting just enough privilege, just in time, so that users can perform work required tasks and operations.

With this model, only minimum permissions are granted at just the right time to get a job done. Such permissions are then revoked immediately upon completion of the project or transaction. A Zero Trust security approach authenticates and authorises every connection, for example, when a user connects to an application or to a data set via an application programming interface (API).

Gartner predicts that by the end of 2023, modern privacy laws will cover the personal information of 75% of the world's population.

GDPR was the first significant legislation for consumer privacy. Still, others quickly followed it, including Brazil's General Personal Data Protection Law (LGPD) and the California Consumer Privacy Act (CCPA). The sheer scope of these laws suggests you'll be managing data protection legislation in various jurisdictions, and customers will want to know what kind of data you're collecting and how it's being used. It also means you'll need to focus on automating your privacy management system. Standardise security operations using GDPR as a base and adjust for individual jurisdictions.

According to Gartner, the percentage of nation-states passing legislation to regulate ransomware payments, fines and negotiations will rise to 30% by 2025, compared to less than 1% in 2021.

That is a significant jump, as shown by the recent US government announcement that it is moving towards a Zero Trust approach to cybersecurity to dramatically reduce the risk of cyberattacks against the nation's digital infrastructure.

Gartner further predicts that by 2025, 60% of organisations will use cybersecurity risk as a primary determinant in conducting third-party transactions and business engagements, and 40% of boards of directors will have a dedicated cybersecurity committee overseen by a qualified board member. These predictions show that compliance is increasingly front and centre for C-suite executives in the management of businesses.

The fact is that organisations must assume bad actors will inevitably get in, and they must do everything to minimise their attack surface and protect business-critical data from being damaged or destroyed.

A successful zero trust strategy

Companies need to be vigilant concerning data backup and recovery strategies. The concept of constantly verifying, continuously authenticating, and always logging who is going where and doing what should apply to regular operations and application usage. It should also apply to data backup and recovery processes. It is crucial to know who is initiating backups and to where they are backing up the data.

It's also essential to ensure that whatever applications you're using for backup and recovery, those applications have embedded authentication mechanisms such as multi-factor authentication, identity services and role-based access.

One example is a worker who needs to have data recovered from their laptop. What are the credentials that allow this employee to restore the machine? What permissions were granted, and do those permissions need to be changed to reflect a new set of requirements? If the IT team is restoring a laptop set up a year ago, who ensures no one else has access to that machine? Zero Trust in data backup and recovery goes a long way to resolving these questions while securing enterprise data further.

Immutable storage should also be part of any Zero Trust initiative. Immutability is when data is converted to a write-once, read many times format. Immutable storage safeguards data from malicious intent by continuously taking snapshots of that data every 90 seconds. Because the object store is immutable, you can quickly restore data even if someone tampers with it.

As data breaches grow in volume and complexity, businesses must consider creative approaches to strengthen their protection against cyber threats. Still, it must be built around a Zero Trust security model – without it, breaches are guaranteed.




Share this article:
Share via emailShare via LinkedInPrint this page


Further reading:

Upgrade your PCs to improve security
Information Security Infrastructure
Truly secure technology today must be designed to detect and address unusual activity as it happens, wherever it happens, right down to the BIOS and silicon levels.

Read more...
The hidden cost of cheap networking gear
Duxbury Networking Infrastructure
When it comes to building a network, price is always a consideration, especially in the current economic climate, but there is a difference between smart spending and short-term savings with long-term losses.

Read more...
Open source code can also be open risk
Information Security Infrastructure
Software development has changed significantly over the years, and today, open-source code increasingly forms the foundation of modern applications, with surveys indicating that 60 – 90% of the average application's code base consists of open-source components.

Read more...
Fastest PCIe Gen 5.0 NVMe SSD
Products & Solutions Infrastructure
Sandisk has unveiled the WD_BLACK SN8100 NVMe SSD with PCIe Gen 5.0 technology, an internal SSD delivering speeds up to 14 900 MB/s and capacities up to 4 TB, with 8 TB solutions available soon.

Read more...
Unified storage solution
Products & Solutions Infrastructure
CASA Software has announced the local availability of Nexsan’s upgraded unified storage solution, Unity NV4000, which is ideal for mixed workloads, from virtualisation and video surveillance to secure backup and recovery.

Read more...
Suprema unveils BioStar Air
Suprema neaMetrics News & Events Access Control & Identity Management Infrastructure
Suprema launches BioStar Air, the first cloud-based access control platform designed to natively support biometric authentication and feature true zero-on-premise architecture. BioStar Air simplifies deployment and scales effortlessly to secure SMBs, multi-branch companies, and mixed-use buildings.

Read more...
Back-up securely and restore in seconds
Betatrac Telematic Solutions Editor's Choice Information Security Infrastructure
Betatrac has a solution that enables companies to back-up up to 8 TB of data onto a device and restore it in 30 seconds in an emergency, called Rapid Access Data Recovery (RADR).

Read more...
Advanced surveillance storage from ASBIS
Infrastructure Surveillance Products & Solutions
From a video storage solutions perspective, SkyHawk drives, designed for DVRs and NVRs, offer high capacity, optimised firmware, and a reliability workload rating of hundreds of terabytes per year.

Read more...
Power surges are killing our networks
Duxbury Networking Infrastructure
With power surges and lightning strikes becoming an all-too-familiar threat to South African infrastructure, Duxbury Networking is calling on local installers and network integrators to follow proper grounding protocols.

Read more...
A passport to offline backups
SMART Security Solutions Technews Publishing Editor's Choice Infrastructure Smart Home Automation
SMART Security Solutions tested a 6 TB WD My Passport and found it is much more than simply another portable hard drive when considering the free security software the company includes with the device.

Read more...











SMART Security Business Directory


While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.

Published by Technews

»  Dataweek Electronics & Communications Technology
»  Electronics Buyers' Guide (EBG)

»  SMART Security Solutions
»  SMART Security Business Directory

»  Motion Control in Southern Africa
»  Motion Control Buyers' Guide (MCBG)

»  South African Instrumentation & Control
»  South African Instrumentation & Control Buyers' Guide (IBG)



© Technews Publishing (Pty) Ltd. | All Rights Reserved.