Defending enterprise and service provider networks is no longer just about having big firewalls deployed at the edge of the network, which is a fact that Philip Quade, Chief Information Security Officer at Fortinet, understands well.
"You need to be able to segment, authenticate, detect bad behavior no matter if it's at the edge or middle of the network or even in a virtualized space," Quade said in a video interview with eSecurity Planet.
Network segmentation can also help to limit the risk of ransomware, which is a growing threat to organizations of all sizes. Quade said that having data backups is critical, but in general organizations should look at security risks, from ransomware or otherwise, from multiple dimensions.
"Risk is not just vulnerabilities and threats, but consequences as well," Quad said. "If you want to mitigate risk you need to have a strategy in place that can mitigate bad consequences."https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
For example, if all of an organization's intellectual property is in one place where a ransomware attacker could encrypt all the data, that's an unmitigated risk.
"It's about mitigating consequences through procedures and it's also about using behavior-based analytics," Quade added.
Watch the full video interview with Philip Quade below:
Sean Michael Kerner is a senior editor at eSecurityPlanet and InternetNews.com. Follow him on Twitter @TechJournalist.