What is your Security Plan? (Part 2 of 4)
When’s the last time you took a step back and took an honest look at what you and your organization were doing to address IT security? In the first of this four-part series we discussed a few things you should be concentrating on regarding email security and training your end users to know what is and what is not a phishing attempt, while also keeping your machines fully patched. In the second part of the series we will focus on Next Generation Firewalls (NGFW), Web Application Firewalls (WAF), and Denial of Service (DoS).
The firewall(s) in your environment(s) are the first line of defense. What does this mean?
In this brief explanation I am going to use the example of how security at an international airport has evolved over the years, as it is not that different than what has happened with firewalls in IT security. Years ago, when you arrived at the airport to check in for an international flight you would have to show your passport along with your ticket to get through security. This is similar to a basic stateful packet inspection firewall. Today, when you are provided your ticket or you open up the mobile app for your airline, you are issued a bar code that is required to be scanned at security. When your ticket or mobile application is scanned by the security personnel there are multiple checks that are going on in the background to make sure that you are approved to proceed through security, and of course they are confirming that this information matches what is on your passport. The checks that are going on in the background equate to the advanced NGFW features that you get in many modern firewalls, like Fortinet, today. Some of the things that are able to b