Principle 1: Zero Trust Networks
Zero Trust network security is about having the ability to “Divide and Rule” your network in order to reduce the risk of lateral movement.
-
Remote Access solution secures access to any internal enterprise network or application residing in the data center, IaaS, public or private clouds. With intuitive clientless access to Web, RDP, SSH and SQL-based resources, the service is both user and management friendly, while catering to the needs of diverse personnel, including employees, third-party users, administrators, engineers and DevOps.
-
Security Gateways enable you to create granular network segmentation across public/private cloud and LAN environments. With detailed visibility into the users, groups, applications, machines and connection types on your network, they allow you to set and enforce a “Least Privileged” access policy. So, only the right users and devices can access your protected assets.
Principle 2: Zero Trust People
With 81% of data breaches involving stolen credentials, it is clear that username and passwords do no longer prove the identity of a user. Identities are easily compromised, so access control to your valuable assets must be strengthened.
-
Identity and Access Management Solutions ensures access to your data is granted only to authorized users, and only after their identities have been strictly authenticated; using Single Sign-On, Multi-Factor Authentication, context-aware policies (e.g. time and geo-location of the connection), and anomaly detection.
-
Remote access offers least privileged access for diverse users, including internal and external identities, by integrating into directories, identity providers and offering PAMs solution for engineers, administrators and DevOps.
Principle 3: Zero Trust Devices
Security teams must be able to isolate, secure, and control every device on the network at all times.
- Netbull solutions enable you to block infected devices from accessing corporate data and assets, including employees’ mobile devices and workstations, IoT devices and Industrial Control Systems.
- In addition, the provided EPP & EDR solutions protect employees’ devices at all times and maintain your corporate security policy on untrusted networks.
Principle 4: Zero Trust Workloads
Securing workloads, particularly those who are running in the public cloud, is essential since these cloud assets (e.g. containers, functions, and VM’s) are vulnerable, and attractive target to malicious actors.
- nSA includes cloud security solutions that integrate with any public or private cloud infrastructure and provide full visibility and control over these ever-changing environments; including AWS, GCP, Microsoft Azure, Oracle Cloud, IBM Cloud, Alibaba Cloud, NSX, Cisco ACI, Cisco ISE, OpenStack, etc.
Principle 5: Zero Trust Data
Zero Trust is all about protecting the data while it is shared continuously between workstations, mobile devices, application servers, databases, SaaS applications, and across the corporate and public networks. nSA includes solutions for:
-
Data Encryption — By encrypting your data, wherever it resides, being used or transferred, you can render it useless if it is stolen.
-
Data Loss Prevention — Tracks and controls data movements across the network to ensure sensitive information does
-
Data Management Categorization and Classification — Classify and protect business documents and files, inside and outside your organization. Provide employees one-touch access from their mobile devices to corporate email, files, directories, etc.