Page 67 - Security Today, July/August 2020
P. 67

INSIDER THREAT
Unlike external threats, insiders do not need to break into an organization’s computer systems. They already have some level of trusted access. Most unwelcome insider risks are due to negligence rather than malicious intent (Cloud Security Alliance, 2020). Insid- ers can compromise intellectual property, sensitive data, or compro- mise additional credentials. In some circumstances, there is a data breach; in others, it would be described as “data leakage.”
As with any data breach, the organization’s reputation and brand are at stake. Negligence or lack of training can result in a significant negative impact.
The best mitigation for insider threats is the implementation of good role separation, security monitoring and auditing. Addition- ally, annual security training and education that includes policy, as well as technical material, is essential. Reviewing access and privi- leges regularly to maintain a least-privilege posture is important.
COVID-19 CONSIDERATIONS
There has been a dramatic increase in cyber scams and attacks since the COVID-19 pandemic began (Gallagher, 2020). There has also been an increase in spam and phishing attacks that use COVID-19 in their approach, as well. Many of these are being used to spread malware. Most organizations have existing security protections in place against these types of attacks. Still, to be most effective, security personnel should update spam filters, anti-virus signatures, message hygiene solutions and educate their popula- tion about these current risks.
The cloud can provide benefits for organizations adapting to the new COVID-19 requirements. For example, it provides a mechanism to increase capacity rapidly. Systems residents in the cloud do not require local operations for maintenance. This re- moves some planning and logistical challenges. The trade-off is to ensure your cloud service providers have an effective plan for maintaining their operations during the COVID-19 period (Bridgwater, 2020). Since COVID-19 has forced organizations to embrace remote work, the cloud can be an effective platform to ensure business continuity during a global pandemic (Krill, 2020).
With this in mind, the most direct security threat today is how the edge has shifted from inside the organization’s network perim- eter into each worker’s household. This threat includes using work- stations or mobile devices that are no longer under the enterprise’s direct control.
Employees are accessing and potentially storing the organiza- tion’s data. In fact, to help facilitate work-from-home scenarios, some organizations might be forced to migrate systems and data to the cloud that were previously accessible only within the orga- nization perimeter. Applications and services that never contem- plated this type of remote access might have exposures (SC Me- dia, 2020). These potential exposures need to be evaluated before hastily migrating to the cloud.
Mitigation risk begins with the acknowledgement of the basics of protecting data in transit and protecting data at rest. Virtual private network technologies or other encrypted communications are essential to protect in-transit information. The use of encryp- tion technologies, along with well-written and enforceable security policies, can be used to protect data residing on devices outside the boundaries of the organization. The use of network access control solutions can further protect an organization from compromised end devices.
These will be trying times for organizations and cybersecurity is more important than ever.
Cloud security risks look like the challenges that IT security pro-
fessionals have dealt with since the days of big iron. Changing one’s technology platform to the cloud requires a new set of tools to ad- dress these longstanding challenges.
There are unique risks, but the most prominent are those that have always perplexed CSOs and administrators:
secure the organization’s data, reduce misconfig-
uration, systematically implement security, man-
age identities and access, and defend against the negligent or malicious insider.
Cliff Krahenbill is a professor at Columbia Southern University.
References
Bourne, B. J. (2020, March 24). Blog: How cloud companies are reacting to Covid-19 and services offered: AWS, Alibaba, and more. Retrieved March 27, 2020, from https://www.cloudcomputing-news.net/news/2020/ mar/24/blog-how-cloud-companies-are-reacting-covid-19-and-servic- es-offered-aws-alibaba-and-more/
Bridgwater, A. (2020, March 16). With A Few Glitches, Cloud Computing Should Cope With COVID-19. Retrieved March 27, 2020, from https:// www.forbes.com/sites/adrianbridgwater/2020/03/16/with-a-few-glitches- cloud-computing-should-cope-with-covid-19/#3252e18473fe
Canadian Center for Cyber Security. (2018, March 8). Cloud Security Risk Management. Retrieved from https://cyber.gc.ca/en/guidance/cloud-secu- rity-risk-management-itsm50062
Candia, T. (2020, February 14). 5 Best Practices for Agencies to Implement Network Access Control. Retrieved March 27, 2020, from https://statetech- magazine.com/article/2018/06/5-best-practices-agencies-implement-net- work-access-control
Cloud Security Alliance. (2020, February 4). Top Threats to Cloud Com- puting: Egregious. Retrieved March 20, 2020, from https://cloudsecurity- alliance.org/artifacts/top-threats-to-cloud-computing-egregious-eleven
Dobran, B. (2020, March 2). Cloud Security Threats & Risks: 31 Experts On Staying Secure. Retrieved from https://phoenixnap.com/blog/cloud- security-threats-and-risks
Gallagher, S. (2020, March 27). Facing down the myriad threats tied to COVID-19. Retrieved March 27, 2020, from https://news.sophos.com/ en-us/2020/03/24/covidmalware/
Krill, P. (2020, March 24). COVID-19 stress tests cloud services. Retrieved March 27, 2020, from https://www.infoworld.com/article/3534051/covid- 19-stress-tests-cloud-services.html
SC Media. (2020, March 24). COVID-19 exposes gaps in cybersecurity safety net as millions work from home. Retrieved March 27, 2020, from https://www.scmagazine.com/home/security-news/covid-19-exposes- gaps-in-cybersecurity-safety-net-as-millions-work-from-home/
U.S. Department of Defense Information Systems Agency. (2017, March 6). Cloud Computing Security Requirements Guide. Retrieved from https://dl.dod.cyber.mil/wp-content/uploads/cloud/pdf/Cloud_Comput- ing_SRG_v1r3.pdf
U.S. National Security Agency. (2020, January 22). Mitigating Cloud Vul- nerabilities. Retrieved March 20, 2020, from https://media.defense. gov/2020/Jan/22/2002237484/-1/-1/0/CSI-MITIGATING-CLOUD- VULNERABILITIES_20200121.PDF
Violino, B. (2019, October 11). 11 top cloud security threats. Retrieved from https://www.csoonline.com/article/3043030/top-cloud-security- threats.html?upd=1584676606940
WWW.SECURITYTODAY.COM 67


































































































   65   66   67   68   69