PRESIDIO
“ Customers tell us they had no idea that level of automation was even possible and are really enjoying the insights and outputs they are getting through being able to leverage the automation we have baked in through APIs ,” he said .
Secure Access Service Edge The Secure Access Service Edge ( SASE ) is at the forefront of Trader ’ s strategy for remote workers . “ Latency became a problem . We had engineering companies and architects that were spending six or seven hours downloading blueprints they were working on at home , rather than the secure networks they had in the office . That placed a focus on identity access management and real-time assessment of the end user at the endpoint . That is why identity is so important : the perimeter has shifted .”
Addressing the endpoint required User and Entity Behaviour Analytics ( UEBA ) is a process of gathering insight into the network events that users generate every day . One example describes the ' impossible traveller ' where a user appears to interact with the same resource from two different locations but could not possibly have made that trip in that time . “ We ' d recommend the user add another layer of validation called twofactor authentication . We are seeing more companies adopt that approach , which is very encouraging ,” says Trader . To further protect the business , Presidio has incorporated Managed Detection and Response ( MDR ) to automatically detect such compromises , and to isolate or quarantine those offending users within seconds .
Partnerships with Lacework , Trend Micro and Fortinet In the war against cyber attackers , a rich ecosystem of partners is vital , and Presidio ’ s approach is to find the right partners for each
client situation . “ I rely on dozens of partners to bring to the table including vendors such as Lacework , Trend Micro and Fortinet ,” said Trader .
Lacework is the data security platform for the cloud which uses a patented Polygraph system which has cracked the code for how to leverage the massive scale , complexity , and containerisation of cloud computing to redefine a modern approach to security .
Presidio leverages Lacework to gain additional visibility on a decentralised model of the data . It focuses on anomaly detection and leveraging Entity and User Behaviour Analytics ( EUBA ).
Trader uses the analogy of sunspots to show how they can identify anomalies in data . “ If you ' re looking at the sun and you ' ve got different flares that pop off – those are anomalies . If we focus on normalised data , we ' re going to be pulling our hair out because that ’ s massive , so we need to focus on those anomalies . cybermagazine . com 61