Trying to figure out what the best method to secure cloud exchange fabric. In general if the organization requires firewalls between its data and anywhere it does not control the other end (the ins and outs) - where does partner exchange fabric fit in that scenario?

CloudSecurity & GRC
666 views2 Comments
Sort By:
Oldest
Head of Cyber Security in Manufacturing7 months ago
I'm not sure if i understood the outcome properly.
If you share data and you want to keep control over it, the only solution would be a Digital Rights Management in one or the other form.

If you bought a specific software and you're in fear of the software could be breached like it happened to "Progress Software's MOVEit Transfer enterprise" last year. You could threat model around it and possibly see firewall filtering as a risk reduction. Do a due diligence on the software how it had been developed and if security by design and default is baked in and secure languages frames are used and if they are continuously updated.

1
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
IT & Strategy Advisor to CxOs || Digital & Enterprise Architecture Consultant in Consumer Goods7 months ago
If you are using an advanced software-defined interconnection solution, then such a solution helps to securely, and dynamically connect to distributed infrastructure and digital ecosystems, including with partners, customers, and cloud providers. You may have to check which concept is used - interconnection / peering / APIs / SDN (Software-Defined Networking) / virtual connection and what are the security controls implemented for the same. 

Content you might like

We are using MDM and MAM with Intune to protect our Office 365 data on employee mobile devices. We also have end-users who are contractors and have existing MDM/MAM controls on their device from their primary employer.  They cannot add our corporate INTUNE controls to the same device according to the Microsoft error messages. The same issue applies to NEDs who work for multiple corporates. Has anyone else found a solution for this?

Management ToolsSecurity & GRCStrategy & Architecture+1 more
Director of Information Security9 days ago
We haven't found a "good" solution short of issuing a separate managed device; the user has to choose whose policies to apply to their device. On Android you can technically create separate user profiles to get around this ...read more
Read More Comments
364 views3 Comments

In the past 6 months, have you seen an uptick in targeted cyberattacks on telehealth devices and networks?

Security & GRCNetworkThreat & Vulnerability Management+2 more

No Increase16%

1-5% increase47%

6-25% increase24%

26-50% increase6%

51-75% increase1%

76%+1%

Other2%

View Results
1.7k views1 Upvote

What is the most interesting/helpful/unique tool you're using right now that no one is talking about?

CloudNetworkCompute+37 more
Senior Director, Technology Solutions and Analytics in Telecommunication3 years ago
Palantir Foundry
3
Read More Comments
11.7k views13 Upvotes49 Comments

What is your organization’s current status for implementing endpoint security to protect O365 on mobile devices?

End-User Services & CollaborationSecurity & GRCDevice Management+14 more

Implementation complete23%

Implementation in progress54%

Planned within the next 12 months12%

Not planned7%

Not enabling O365 on mobile2%

View Results
2.4k views2 Upvotes

Does anyone have playbooks, or checklists covering cybersecurity aspects of Divestitures, Mergers, and acquisitions? 

Security & GRC
Director of Network Transformationa year ago
Excellent question!!  Folks, please share what should be included in a playbook/checklist.  Let's crowdsource one!
3
Read More Comments
4.2k views2 Upvotes4 Comments