Focus is the key for successful endpoint protection

Compromised passwords, unpatched vulnerabilities and unauthorised applications can all lead to an endpoint being exploited by threat actors.

Peter Soulsby, the Head of Cybersecurity at Brennan, says there are three big issues he’s seeing on endpoints today.

“Installation of unauthorised software, users being duped into giving away access and endpoints not protected by best of breed technology all help modern cybercriminals gain a foothold on corporate networks and applications.”

When endpoint security is well executed and managed, users can do what they need to do safely. Great endpoint management means someone, such as an internal security team or trusted partner, is responsible for ensuring all software is authorised and up to date. Businesses should also ensure that controls don’t prevent people from doing their work. Soulsby notes that when security gets in the way, users will find ways to circumvent controls and create new gaps in your security armour.

With new threats and vulnerabilities being reported almost daily, organisations might feel overwhelmed in trying to determine the best way to protect their information and system assets. Soulsby offers this critical advice.

“Don’t get sucked into conventional wisdom or worry about every threat or attack that hits the news. Choose what’s right for your business. Assess your risks, understand the costs and benefits of every cybersecurity solution, and ensure whatever you do is fit for purpose for your business.”

With many organisations under financial pressure, finding the resources to protect information assets can be a challenge. But Soulsby says focus is critical.

“Trying to do everything all at once can be a trap. Organisations should focus on the two or three most critical risks they face and do those well rather than spread themselves too thin and do many things poorly. Not only is this more cost effective but it will deliver better outcomes.”

Endpoint security is a critical element of a layered defence against cyber-attacks. By focussing on your organisation’s risks, choosing solutions that are right for your specific needs and working with trusted partners, organisations can minimise the risk of business disruption and data loss.