SMEs looking at a security solution should not simply opt for the best firewall, but have to include several levels of security in their networks, says Getronics senior network engineer Jacques Allison.
Getronics is an information and communication technology solutions and services provider.
"The firewall used will only protect you from potential threats from the Internet or external companies on the network level, if configured correctly," says Allison.
"To make sure you have better security, you have to include several levels of security to your network. This is similar to the security that banks have, ie security guards as the first level of security at each door into the building, and then an access control system for authorised personnel to the back of the offices.
"The last level is a vault that has a secret combination lock and keys for the physical protection of the money.
"If you only have the first level of security, it might keep out most of your threats, but someone who is determined to get in will be able to do so easily."
He says that as more users access the Internet and as companies expand their networks, the challenge to provide comprehensive security for internal networks becomes increasingly difficult.
The best way to secure any network is to achieve the correct balance between making network resources available to authorised users but restricting access to all other network services, Allison adds.
"Companies must determine which areas of their internal networks have to be protected, as well as learn how to restrict user access to these areas, and determine which types of network services they should filter to prevent potential security breaches," Allison continues.
"Network security is a broad subject and there are many areas that could be a security problem for small and medium-size companies.
"Network security should be addressed at the physical media level, where packet snooping and encryption problems can occur, as well as at the network, or protocol layer, where the Internet Protocol packets and routing updates are controlled. The application layer, where, for example, host-level bugs and viruses become an issue, must also not be forgotten."
The best way to embark on a security strategy, Allison says, is to spend some time with an expert, who will take the time to understand the company`s needs for securing its network.
"The key for building a secure network is to define what security means to your organisation and often it`s best to rely on an outside opinion for this."
Getronics will exhibit at Live, the Internet and networking event for medium to smaller companies. The event is being organised by Events Ontrack and will take place from 4 to 6 October at the Sandton Convention Centre.
Share
