Accedian, a leader in performance analytics, cybersecurity threat detection, and end-user experience solutions, released a new research study examining the adverse security implications of network overprovisioning in enterprises and the common practices and concerns surrounding it. Nearly 70% of the 500 IT professionals surveyed in the US view security as the biggest concern with overprovisioning. This underpins the need for an alternative approach that’s both sustainable and inexpensive, and optimizes network and application performance and security visibility, as outlined in the research.
Recommended ITech News: McAfee Partners with True Network Solutions to Offer Walmart Customers In-Store and Online Tech Services
“Overprovisioning means there is more infrastructure to protect, a larger attack surface, more attack vectors, and an increased opportunity for the misconfiguration of tools due to human error or Security Operations Center (SOC) overload. It is like a ticking time bomb for enterprises unless urgent action is taken to rectify it,” said Chris Kissel, IDC Research Director, Worldwide Security & Trust Products. “Given the extent of overprovisioning taking place across industries including financial services, public sector, healthcare, IT, manufacturing, and retail, coupled with the surge in security incidents in the past year, it’s more about “when” and not “if” a cyberattack is successful.”
Some of key highlights from the research include:
- Security is the biggest concern with overprovisioning for 72% of the surveyed IT professionals, followed by management (55%) or budget (48%).
- The majority of network administrators (62%) believe that network security is more important than cloud application performance (38%).
- 66% of respondents admit to overprovisioning over the past 9-12 months.
- The reasons cited for overprovisioning include — network latency (62%), worries over database service delays (61%), concerns over application code issues (58%) as well as not wishing to upset users (34%).
- 78% admit that overprovisioning led them to discover further performance bottlenecks.
“Farmers & Merchant Bank built a private cloud model to ensure performance and security for our customers,” says Greg Sachs, CTO. “This allows us to evaluate cloud options based on value-add (cost, functionality, security) with very little pressure to move if not ideal for the institution. As a result, we were ready for COVID surge requirements.” Greg adds, “I believe it is imperative to plan, build, monitor, and maintain. I feel the biggest risk is overprovisioning without proper planning/security considerations.”
Recommended ITech News: Claro Enterprise Solutions Launches IoT-Enabled RTLS+ Solutions
“The alternative to overprovisioning is installing smart, end-to-end network and application monitoring tools that deliver high-performance network and user experience monitoring,” said CISSP Mary Roark, Vice President, Cybersecurity Strategy, Accedian. “In hybrid cloud and software-defined environments, virtualized network monitoring tools that empower SOC teams with metadata and machine learning analytics can assist to identify unusual activity on a network. Even better, using a tool that serves both network operations and security operations teams will simplify operations, reduce costs and help to prevent overprovisioning and the introduction of more risk by addressing network performance issues in the same platform as security.”
Accedian’s Skylight™ delivers high-performance network and user experience monitoring across any application, any cloud, and any network. Essentially, the approach involves a four steps:
- Deploy. Place Skylight sensors, which are available as both hardware and software, anywhere in the network according to the unique needs of your enterprise.
- Orchestrate. Leverage our zero-touch provisioning to deploy new sensors in just minutes for a high-velocity solution. Skylight also simplifies, secures, and accelerates service validation, fault management, and performance insight.
- Analyze. Our powerful machine learning analytics deliver a rapid time to insight, drilling down from end-user application issues deep into the network with root cause analytics and configurable alerts.
- Predict. Skylight streams data in real time to monitor how well networks, applications, and services are performing, and whether it is time to make changes or adjust policies.
Significantly, this approach will also reduce the threat surface and provide Security Operations Center (SOC) teams with network traffic data that can be used to better detect security breaches or anomalies.
Recommended ITech News: Datadog Announces Deep Database Monitoring