Layering IT security adds depth

The arrival of computing technologies such as the Internet and Web services has weakened the concept of the corporate IT...

The arrival of computing technologies such as the Internet and Web services has weakened the concept of the corporate IT perimeter.

Over the next few years, as companies open up their systems, we will see these perimeters start to erode. We will witness the deperimeterisation of corporate networks.

But as everything has become connected to the Web, companies have adopted new technologies and have evolved their approach to security and will continue to do so as things become more open.

There has been a move away from a paper-based approach to security. Security is now regarded as a living process, a set of technologies and position statements to manage access to networks that today are very dynamic.

Companies are now increasingly proactive in how they manage their IT security. In recent times many companies simply employed technologies and then left them to stagnate. Now companies constantly monitor their networks.

Another pronounced trend is that people have moved away from implementing point products. Now the perceived wisdom is to take a layered approach to security - the particular technology and which supplier it came from is less important than how it is used and how it is complemented with a policy.

Companies now aim to have layered security at the gateway, at the network and servers both host side and client side.

The approach has moved on from just building a big perimeter to keep people out - now companies are employing a much more unified strategy.

Amit Yoran is vice-president for worldwide operations at Symantec

Read more on Hackers and cybercrime prevention

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close