Solutions
Why a Defense in Layers Approach is Key to Your Cyber Security Strategy
Malware, ransomware, insider threats … because the list of potential Cyber Security threats continues to grow, most experts agree, it’s not a matter of if your company will suffer from a cyber attack, it’s a matter of when. Insurance companies are taking note: they’re toughening their underwriting standards and charging more for cyber liability insurance. In an age when no two threats are exactly alike, it is important to understand that different cyber security threats call for different security measures.
Do you know what you’re looking for?
What Attacks You Should Be Checking For
Malware
This broad category encompasses spyware, viruses, trojans and worms. The common attribute is that all malware is developed solely to cause harm to computers, servers, or networks.
Ransomware
One of the most common types of malware that gets a lot of media attention, ransomware denies the victim access to their data until they pay a ransom to release it.
Phishing
In a phishing attack, the criminal sends fraudulent emails containing malicious files or scripts to unsuspecting users. This type of attack exploits an organization’s point of vulnerability: its employees.
Man-in-the-Middle Attacks
These attackers exploit network security vulnerabilities by inserting themselves between someone’s device and the network, thereby redirecting information to themselves rather than the legitimate destination.
Denial-of-Service Attacks
By flooding a system, server or network with traffic and requests, denial-of-service attacks can incapacitate a system or even take it completely offline, preventing it from fulfilling legitimate requests.
Social Engineering Attacks
In these attacks, the attacker uses social interaction and/or psychological manipulation to gain the trust of a human being, who then hands over login information or otherwise lets the attackers into the system.
Defense in Layers Requires Proactive Focus
Rimage products and solutions cater to a variety of markets and applications. Select your market to learn how Rimage will integrate with your workflows, explore case studies, and more.
Physical Controls
These are tools that control physical access to an organization’s IT systems, such as security teams, locked doors with managed access, biometrics, fences, video security, and the like.
Administrative Tools
Employee training for both in-office and remote workforces as well as company policies, hiring practices and background checks are examples of administrative tools companies can use to protect data.
Technology
Organizations should include several different types of data security technology tools, such as:
- Antivirus software
- Authentication/password security
- Encryption
- Firewalls
- Virtual private networks (VPNs)
- Multi-factor authentication
- Intrusion prevention software
Types of data security
There’s no one solution that will protect against all forms of cyber attack. Rimage recommends organizations employ multiple types of data security to create a Defense in Layers security posture. Industry Standard – Physical Controls, Administrative Tools, Technology
Rimage’s Solution focuses on the Technology Layer – Removeable Data Storage, WORM Technology, Chain of Custody, Backup & Recovery
Removable Data Storage
Offline, removable data management. Data is stored on CDs, DVDs, Blu-ray, USB or other offline media to keep it out of the hands of cyber criminals.
WORM Technology
Write once, read many (WORM) technology. Data is written indelibly on removable management media so that it can be read any number of times, but never manipulated or changed.
Chain of Custody
Chain of custody. Movement of data is tracked through its lifecycle to document each user that handles it.
Backup and Recovery
Air-gapped, offline backup and recovery. A copy of your data is kept offline and inaccessible from the internet so that cyber criminals can’t get to it.
Client Testimonials
Eric Power
Director of Strategic Initiaitves“We’re not only managing our clients’ information from our technology platform, but we’re also managing it from an integrity standpoint. Our clients see offline and air gaped backups as another safety check in their compliance, insurance and business continuity requirements to meet current and new government compliance needs.”
Any Questions?
Our award winning team of experts can help answer them.