Scribd Logo
Upload

Welcome to Scribd!

  • 41 views

    Networksecurity

    Uploaded by

    Raymond Ramirez
    Network security involves controlling user access, using antivirus software to detect malware, keeping applications updated to address vulnerabilities, monitoring user behavior for abnormalities, preventing unauthorized data sharing, filtering traffic to block distributed denial of service attacks, training users to identify phishing in email, using firewalls to filter incoming and outgoing traffic, limiting device access to the network, segmenting network traffic by classification, using security information and event management systems to monitor activity and detect intrusions, and restricting employee internet access and blocking web-based threats.

    Copyright:

    © All Rights Reserved
    Download as RTF, PDF, TXT or read online from Scribd

    Networksecurity

    Uploaded by

    Raymond Ramirez
    41 views3 pages
    Network security involves controlling user access, using antivirus software to detect malware, keeping applications updated to address vulnerabilities, monitoring user behavior for abnormalities, preventing unauthorized data sharing, filtering traffic to block distributed denial of service attacks, training users to identify phishing in email, using firewalls to filter incoming and outgoing traffic, limiting device access to the network, segmenting network traffic by classification, using security information and event management systems to monitor activity and detect intrusions, and restricting employee internet access and blocking web-based threats.

    Original Description:

    Original Title

    networksecurity

    Copyright

    © © All Rights Reserved

    Available Formats

    RTF, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Network security involves controlling user access, using antivirus software to detect malware, keeping applications updated to address vulnerabilities, monitoring user behavior for abnormalities, preventing unauthorized data sharing, filtering traffic to block distributed denial of service attacks, training users to identify phishing in email, using firewalls to filter incoming and outgoing traffic, limiting device access to the network, segmenting network traffic by classification, using security information and event management systems to monitor activity and detect intrusions, and restricting employee internet access and blocking web-based threats.

    Copyright:

    © All Rights Reserved
    Download as RTF, PDF, TXT or read online from Scribd
    Download as rtf, pdf, or txt
    41 views3 pages

    Networksecurity

    Uploaded by

    Raymond Ramirez
    Network security involves controlling user access, using antivirus software to detect malware, keeping applications updated to address vulnerabilities, monitoring user behavior for abnormalities, preventing unauthorized data sharing, filtering traffic to block distributed denial of service attacks, training users to identify phishing in email, using firewalls to filter incoming and outgoing traffic, limiting device access to the network, segmenting network traffic by classification, using security information and event management systems to monitor activity and detect intrusions, and restricting employee internet access and blocking web-based threats.

    Copyright:

    © All Rights Reserved
    Download as RTF, PDF, TXT or read online from Scribd
    Download as rtf, pdf, or txt
    of 3

    Network Security

    Access control. This refers to controlling which users have access to the network or
    especially sensitive sections of the network. Using security policies, you can restrict
    network access to only recognized users and devices or grant limited access to
    noncompliant devices or guest users.

    Antivirus and anti-malware software. Malware, or “malicious software,” is a common


    form of cyberattack that comes in many different shapes and sizes. Some variations
    work quickly to delete files or corrupt data, while others can lie dormant for long periods
    of time and quietly allow hackers a back door into your systems. The best antivirus
    software will monitor network traffic in real time for malware, scan activity log files for
    signs of suspicious behavior or long-term patterns, and offer threat remediation
    capabilities.

    Application security. Each device and software product used within your networking
    environment offers a potential way in for hackers. For this reason, it is important that all
    programs be kept up to date and patched to prevent cyberattackers from exploiting
    vulnerabilities to access sensitive data. Application security refers to the combination of
    hardware, software, and best practices you use to monitor issues and close gaps in
    your security coverage.

    Behavioral analytics. In order to identify abnormal behavior, security support


    personnel need to establish a baseline of what constitutes normal behavior for a given
    customer’s users, applications, and network. Behavioral analytics software is designed
    to help identify common indicators of abnormal behavior, which can often be a sign that
    a security breach has occurred. By having a better sense of each customer’s baselines,
    MSPs can more quickly spot problems and isolate threats.

    Data loss prevention. Data loss prevention (DLP) technologies are those that prevent
    an organization’s employees from sharing valuable company information or sensitive
    data whether unwittingly or with ill intent outside the network. DLP technologies can
    prevent actions that could potentially expose data to bad actors outside the networking
    environment, such as uploading and downloading files, forwarding messages, or
    printing.

    Distributed denial of service prevention. Distributed denial of service (DDoS) attacks


    are becoming increasingly common. They function by overloading a network with one
    sided connection requests that eventually cause the network to crash. A DDoS
    prevention tool scrubs incoming traffic to remove nonlegitimate traffic that could threaten
    your network, and may consist of a hardware appliance that works to filter out traffic
    before it reaches your firewalls.

    Email security. Email is an especially important factor to consider when implementing


    networking security tools. Numerous threat vectors, like scams, phishing, malware, and
    suspicious links, can be attached to or incorporated into emails. Because so many of
    these threats will often use elements of personal information in order to appear more
    convincing, it is important to ensure an organization’s employees undergo sufficient
    security awareness training to detect when an email is suspicious. Email security
    software works to filter out incoming threats and can also be configured to prevent
    outgoing messages from sharing certain forms of data.

    Firewalls. Firewalls are another common element of a network security model. They
    essentially function as a gatekeeper between a network and the wider internet. Firewalls
    filter incoming and, in some cases, outgoing traffic by comparing data packets against
    predefined rules and policies, thereby preventing threats from accessing the network.

    Mobile device security. The vast majority of us have mobile devices that carry some
    form of personal or sensitive data we would like to keep protected. This is a fact that
    hackers are aware of and can easily take advantage of. Implementing mobile device
    security measures can limit device access to a network, which is a necessary step to
    ensuring network traffic stays private and doesn’t leak out through vulnerable mobile
    connections.

    Network segmentation. Dividing and sorting network traffic based on certain


    classifications streamlines the job for security support personnel when it comes to
    applying policies. Segmented networks also make it easier to assign or deny
    authorization credentials for employees, ensuring no one is accessing information they
    should not be. Segmentation also helps to sequester potentially compromised devices
    or intrusions.

    Security information and event management. These security systems (called SIEMs)
    combine host-based and network-based intrusion detection systems that combine real
    time network traffic monitoring with historical data log file scanning to provide
    administrators with a comprehensive picture of all activity across the network. SIEMs
    are similar to intrusion prevention systems (IPS), which scan network traffic for
    suspicious activity, policy violations, unauthorized access, and other signs of potentially
    malicious behavior in order to actively block the attempted intrusions. An IPS can also
    log security events and send notifications to the necessary players in the interest of
    keeping network administrators informed.

    Web security. Web security software serves a few purposes. First, it limits internet
    access for employees, with the intention of preventing them from accessing sites that
    could contain malware. It also blocks other web based threats and works to protect a
    customer’s web gateway.

    You might also like