EXPERT
OPINION
Forescout
expert on
why visibility is
the backbone
of security
While the convergence of IT and OT networks has clear business benefits, it also
introduces new security risks. Hamed Diab, Regional VP of MENA, Forescout, tells
us about the importance of visibility in securing these environments, as well as
how CISOs can take steps to strengthen their current IT-OT security strategies.
CCan you give us a broad outline
of the cyberthreat landscape
right now?
Over the last 20 years, Network
Access Control (NAC) has become
a fundamental component for
enterprises looking to ensure a resilient
cyberstrategy. Recently, however, the
volume and diversity of the Internet of
Things (IoT) and Operational Technology
(OT) devices has increased, so much
so that NAC now must provide a deeper
level of insight into the posture of each
device to correctly provide or deny
access at varying levels.
As diversification of devices continues,
full visibility, classification and enforcing
policies become more difficult.
The challenges faced are varied but
2020 has showcased this more acutely
than at any other time as the world
grapples with COVID-19. The sudden
shift to remote working and the need
for organisations to create access from
home to corporate networks means that
virtual private network (VPN) use has
also increased.
Many office applications remain onpremise
and employees everywhere
– particularly those working in
government, healthcare and critical
infrastructure – still require access to
corporate and operational networks. This
gives organisations no choice but to rely
on VPNs to secure the pathway from
remote users to a corporate network
with an end-to-end encrypted tunnel.
The problem is that a VPN is a tool to
enable security rather than an entire
toolkit. It doesn’t carry functions like
anti-malware or compliance checks and
so should not be seen as a ‘catch-all’
approach to cybersecurity – ultimately,
a VPN serves as a fast lane into the
heart of corporate networks which,
without adequate protection, could lead
to potentially disastrous consequences,
creating potentially a bigger threat than
what it is enabling.
How important is network
visibility for securing
IT–OT environments?
Incredibly important. Gaining full visibility
over devices, whether they be permanent
or BYOD, IT or OT is a strong foundation
for any cybersecurity practice.
Research from Forescout last year
showed that 85% of IT teams agree a
lack of full visibility is a significant point
of weakness in any security infrastructure
and, on average, any organisation that
then goes on to achieve comprehensive
network visibility will find 30% more
devices than they were expecting.
Full visibility allows for all these
devices to be consolidated under one
www.intelligentciso.com | Issue 26
41