In order to really secure their networks, organisations need to move past the limited functionality of traditional VPN technology. A deep understanding of the network traffic is required to tackle advanced threats and legacy systems such as VPNs are simply not good enough stop threats at the network perimeter and in the data centre.
So what should security managers keep in mind when defining a modern approach to mobile security? Security solutions in the mobile age must allow organisations to do the following:
- Maintain visibility into all mobile traffic: Security solutions must have the capability to ensure that all applications are inspected across all ports, providing the ability to pinpoint which apps are being used and by whom.
· Consistently enforce security policies: Today's security managers also need to maintain control over access to the data centre and cloud applications using policy based on application, user and host information. The capability to terminate network connections directly on existing next-generation firewalls is also critical in order to enforce the same security policies for both mobile and on premise users.
- Threat prevention for the mobile workforce: Mobility solutions used should also have the capability to secure application traffic by eliminating both known and unknown malicious content. Forward thinking enterprises need to use solutions that deliver protection against exploits, malware, malicious websites, and file blocking using threat prevention and URL filtering.
Clearly, it is time to replace aging third-party VPN gateways because connectivity without security isn't enough protection from the types of attacks that enterprise users face today. Organisations need to replace their legacy VPN systems with a security approach that provides consistent protection from modern, advanced threats, no matter where users are located.
Sign up for Computerworld eNewsletters.