CISA Insights on Network Access Security – Spiceworks News and Insights

• CISA, in collaboration with domestic and international partners, has released cybersecurity guidance for secure network access.
• The report covers the use of remote access and VPN limitations, as well as details on zero trust, secure service edge, and secure access service edge.

Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with international partners, has released guidance on the modern approaches to network access security. It emphasizes the need for security measures such as Zero Trust, Secure Service Edge (SSE), and Secure Access Service Edge (SASE). Some of its key recommendations and strategies are as follows:

Key Solutions

1. The Zero-Trust Model

According to the report, the zero-trust model is critical to modern network security. Focusing on the principle ‘never trust, always verify,’ the approach ensures network users are authenticated, authorized, and validated before providing access to data and applications. CISA states that implementing the zero-trust approach can cut the risk of data breaches by around 50%.

See More: AMD Initiates Breach Probe as Data Appears on Darknet Forum For Sale

2. Secure Service Edge (SSE)

SSE uses a cloud-based service to integrate security functions into networking, aiding secure remote access, in-depth visibility to network traffic, and a better user experience. SSE also combines features such as cloud access security brokers (CASBs), secure web gateways (SWGs), and zero-trust network access (ZTNA). CISA has stated that organizations using SSE witnessed a 40% reduction in security incidents and a 30% improvement in network performance.

3. Secure Access Service Edge (SASE)

SASE broadens SSE’s functionality by including wide-area network (WAN) capabilities. It provides secure, optimized access to data and applications regardless of location, thereby better serving modern workforces where remote access is required more often. SASE platforms can combine cloud-powered security with a software-defined WAN to secure access in distributed environments. As per CISA, deploying SASE improves network agility by 35% and reduces operational costs by 25%.

The report also covered the threats and vulnerabilities associated with VPN and conventional remote access deployments. For example, misconfiguration can lead to major risks of data breaches and unauthorized access.

Best Practices for Network Security

The guidance also covered recommendations on best practices to optimize network security:

• Continuous monitoring and assessment: Organizations have been urged to implement continuous monitoring of user activity and network traffic to detect and respond to threats in real time.
• Multi-factor authentication (MFA): It is important to enforce MFA to add an extra layer of security for user authentication.
• Regular security audits: Conduct regular security audits and penetration testing processes to find and address potential vulnerabilities.
• Employee training: Organizations must provide cybersecurity training to employees to ensure awareness about the latest threats and improvements to security practices.

CISA reports that organizations implementing these best practices see a 60% cut in the success of cyber attack attempts​​.

Takeaway

The adoption of modern security approaches can help organizations improve their posture against cyber threats while ensuring safeguards are set up for critical assets.

The guidance was developed by CISA in partnership with international cybersecurity bodies, including the Federal Bureau of Investigation (FBI), New Zealand’s Computer Emergency Response Team (CERT-NZ), New Zealand’s Government Communications Security Bureau (GCSB), and the Canadian Centre for Cyber Security (CCCS). 

The report highlights the need for international cooperation to address the global nature of cyber security threats. For more detailed information, you can access the full guidance document hereOpens a new window .

LATEST NEWS STORIES