Organizations today have to navigate the fast-changing world of security threats. We have put together a list of resources to help our customers advance their security capabilities.
Cybersecurity & Infrastructure Security Agency (CISA)
All organizations should take certain foundational measures to implement a strong cybersecurity program:
- Fix the known security flaws in software.
- Check the CISA Known Exploited Vulnerabilities (KEV) Catalog for software used by your organization and, if listed, update the software to the latest version according to the vendor’s instructions.
- Implement multi factor authentication (MFA).
- Use multifactor authentication where possible. MFA is a layered approach to securing your online accounts and the data they contain.
- Halt bad practices.
- Take immediate steps to: (1) replace end-of-life software products that no longer receive software updates; (2) replace any system or products that rely on known/default/unchangeable passwords; and (3) adopt MFA (see above) for remote or administrative access to important systems, resources, or databases.
- Sign up for CISA’s Cyber Hygiene Vulnerability Scanning.
- Register for this service by emailing vulnerability@cisa.dhs.gov. Once initiated, this service is mostly automated and requires little direct interaction. CISA performs the vulnerability scans and delivers a weekly report.
The CISA also provides additional free services and tools to mature the cybersecurity risk management. These resources are categorized according to the four goals outlined in CISA Insights: Implement Cybersecurity Measures Now to Protect Against Critical Threats.
Fortinet
The Fortinet Network Security Expert (NSE) program is set to undergo significant enhancements in the fall of 2023. These updates have been carefully crafted and researched over several years to address the rapidly evolving threat landscape and job market needs. NSE Certification Program Fall Updates
Fortinet is expanding its existing free training offerings as part of the company’s commitment to train 1 million people in cybersecurity by 2026 to make a significant dent in addressing the skills gap.
Palo Alto Assessments
ICN integrated Palo Alto’s firewall equipment into our security platform. Palo Alto provides tools to help customers realize the full potential of its technology. The following are two assessments that can benefit your network security.
- Security Life-Cycle Report: A Security Lifecycle Review (SLR) provides a customized security assessment of the applications, Internet of Things (IoT) devices, vulnerabilities, threats, and risks in your environment.
- Best Practice Assessment: This quick and easy assessment provides a barometer of your security implementation. Customers can use this tool to understand how to better protect their network by looking deep into your security policy adoption. Efficiency will be enhanced with action recommendations.
- Palo Alto Networks Cybersecurity Academy: This is a free curriculum, ranging from introductory to advanced cybersecurity courses, used by more than 2,000 universities, community colleges, high schools and middle schools.
- Palo Alto Networks Cyber A.C.E.S.: This encompasses programs that provide youth, ages 5-15, with educational resources that help them protect their digital way of life.
KnowBe4
Earlier this summer, KnowBe4 was promoting an active Ransomware Awareness Month campaign. According to their website, ransomware is continuing to evolve and get much, much worse. KnowBe4 is offering a free ransomware resource kits that includes on-demand access to a Ransomware Master Class, a Rescue Manual, information on the global cost of ransomware, and more.
- KnowBe4 provides a listing of additional free IT security tools for phishing, security awareness, password, email security, malware, and compliance.
What matters most is that security becomes a priority within your organization. Take small steps to assess current practices to determine what could be implemented in a reasonable amount of time.
Let ICN Help You
Let ICN be your go-to security resource; from putting in protections, to reduce the likelihood of being a victim, to stepping in and helping when something inevitably happens.
The ICN currently provides Distributed Denial of Service (DDoS) Mitigation, Managed Firewall with Palo Alto or Fortinet equipment, and various network and security assessments.