RNDC relies on data flowing into the organization from thousands of external data sources, including mobile devices used by sales personnel. Information to and from customers and vendors adds to the complexity of securing the network. “With the free sharing of information between customers and vendors, network borders are melting way,” said Dickson. “We have to figure out new ways to protect against threats like ransomware from malicious actors and to keep them from accidentally harming our vendors.”
Dickson has seen an evolution in the number and severity of cyber threats that used to come from individual hackers trying to deface a website to organizations devoted to cybercrime for financial gain. “Advanced threats, like ransomware, have become more vicious. They go to the heart of your organization—your data. And without data, you cannot operate,” said Dickson.
The challenge for RNDC is that today’s hackers use the protocols a company runs every day to move throughout a network. “They look like regular users with very low privileges. They log onto multiple assets and move laterally across the network, then FTP your data out of your network,” said Doro Victor, Network Security Engineer at RNDC. “If you don’t have a way to detect this lateral movement, the hacker is already inside your network without your knowledge.”
In addition to network protection, RNDC needed security designed for virtualized environments, public and private clouds, and protection for servers and applications running on legacy hardware and operating systems that are no longer supported by vendors. This includes Microsoft® Windows® 2003 and Windows® XP servers.