Node4: security comes in 'layers', like onions

Cloud, datacentre and communications software company Node4 has sauced up its security portfolio with a series of upgrades and new security services under the banner of SECaaS (Security as a Service).

Essentially the firm is saying that software application developers working to implement security controls should have an appreciation for the fact that security (especially in the services centric world of cloud) comes in layers, just like onions.

Holistic view

Node4 has taken a holistic view to prevent the kind of vulnerabilities experienced when integrating separate point solutions.

The new service, which is fully-managed by Node4’s Security Operations Centre (SOC), incorporates a number of new elements, including AI and Threat Intelligence.

“Everyone talks about layered protection these days, and that’s hugely important,” commented Steve Nice, chief technologist, Node4. “However it also misses the point slightly. Businesses need the intelligence to put the various tools and services under a single layer of management and to ‘cement’ these elements together in such a way that nothing can slip between the cracks. If components aren’t well-optimised, or you don’t have the visibility to identify and react to threats quickly; businesses risk leaving themselves vulnerable.”

The advice from the firm is that SMEs and the mid-market sector need to remember that as threat vectors and the nature of security threats constantly evolve, security is becoming an increasingly difficult challenge for many SMEs to meet.

Node4’s improved SECaaS offering includes Node4 Next Generation Firewall (N4NGFW) – a managed high-specification firewall integrated with Unfied Threat Management (UTM), which is maintained, monitored and managed by the SOC team for enhanced protection.

There is also cloud security, threat detect intelligence, mobile device management and end point management system technology here.

All at sea on security

In related news, we also learn that a survey by independent satellite communications provider, NSSL Global, has suggested that, although shipping crewmembers understand that they are partially responsible for maintaining cybersecurity on-board their vessels, as many as 84% claim to have received limited or no cybersecurity training from their employers.

“The lack of cybersecurity training is a real concern, but largely tallies with what we’re seeing in the industry,” commented Nigel Quinn, IT security and enterprise manager, NSSLGlobal. “With threat vectors and the nature of security threats constantly evolving, the maritime industry needs to be just as prepared as any other industry to tackle the issue head on.:

Quinn insists that With the majority of attacks being targeted at people rather than IT infrastructure, the ‘human factor’ is widely considered to be the biggest risk in cybersecurity at sea.

To help crews better understand the cybersecurity risks they face and as part of its ongoing campaign to promote cybersecurity at sea, NSSLGlobal will now include its recently co-produced ‘cyber security at sea’ training video on all newly-installed equipment.