By Ash Patel, country manager for UK & Ireland, Stonesoft
Today’s ever-changing threat landscape means that enterprises need to continuously review and adjust the protection they have in place. Moreover, businesses themselves are constantly changing, which has a knock-on effect as to what security is actually required. There’s no doubt that situations can change quite rapidly; while a business may identify a need for a state of the art IPS one day, that’s not to say six months later their needs will remain the same. Instead, they may need a next generation firewall (NGFW) or even a next generation VPN (NGVPN).
Situational analysis over the last decade or so is able to tell us that until recently, many of the products offered by security vendors were static. In other words, security sold and implemented was “fixed”, i.e. the software wasn’t easily adaptable to what was going on in the environment. And because change is usually too rapid for enterprises to be able to successfully adapt to, enterprises weren’t, and still aren’t, always fully protected.
In light of this, businesses are finding themselves spending more money on security equipment than they want to (in order to remain protected and ahead of the next generation of malware attacks). The result of this is that businesses will usually find that they’ve got redundant security equipment at their disposal. As a result, they are realising that as the total cost of ownership (TCO) for the security products increases, they may never fully reap their desired return on investment (ROI).
Staying protected whilst gaining ROI
The question that is on every CIO’s lips is, “how can I keep my company secure, when everything, be it internal or external, is constantly changing, and still sustain ROI, as well as decrease my CAPEX spend?”
With new thinking, this question does have an answer.
There are many security engines available on the market these days. But until recently, there hasn’t been one that has been able to transform existing security products into alternatives – fitting in with business needs. This means that not only does a business have the choice to always be up to date and protected, they also don’t have to buy new products when business needs or the threat environment changes.
Redundant equipment often comes from the lack of having a product that can be altered instantaneously to fit needs. As such, implementing a single solution that is both configurable, depending on needs (present and future) and also agile – so that businesses can react fast, either to any changes to their requirements or to any sudden fluctuations in the threat landscape, is one new way forward. This flexibility gives businesses the ability to change from Firewall to NGFW or from IPS to VPN, as they wish, which will help re-use and distribute investments across the network/s.
These days, lots of businesses are facing similar problems when trying to keep their organisations protected. With every new security breach, it is usually assumed that money will have to be spent on buying new/updated security solutions in order to remain protected in the future. However, new approaches to security-thinking also mean that there are solutions available that can deliver on both the security aspect as well as performance – gone are the days when performance was impacted as the level of security was increased. Transformable products are future-proof – adapting to the business. And as a result, make redundant security software a thing of the past. For CIOs looking to improve the future of the business, what’s better than seeing an increase on ROI and a decrease on all other negative costs associated with previous security equipment?