Let me share an interesting story about a business that I worked with to develop budgeting and IT strategy. I’d worked closely with the EVP to solidify his thoughts in strategic areas for their executive team and board. Business optimization was the goal for each and every IT decision. Together we made the shift from direct integration support to blending integration with a more proactive planning approach, including an IT roadmap to development for the next two years.
What made this remote access decision interesting to observe was how they turned a technical decision into a brilliant strategic decision. This is the overview of the situation:
* 25 remote access users needed remote access to the network
* SSL certificates were expiring
* Simplicity and security are paramount at the network edge
* The edge device had to be an intelligent perimeter to aid the inspection engine
* Avian Flu remote access support was needed
* There was a DR bump license requirement
* Legacy Citrix remote access technologies were in place (including CSG, NFuse, and cert server) and there was no desire to move to a newer weak Citrix remote access product
* 3 quotes were needed from 3 quality vendors
* Integration with two-factor authentication was needed
* DR site integration
* Tight Citrix integration
* Ease of management
* Full client integrity and security policy enforcement was needed at the end points
I arranged for two new SSL VPN product demonstrations. The organization’s IT team reviewed product demos from Citrix, F5 Firepass, and Sonicwall/ Aventail.
How can an SSL VPN be strategic?
I have previously blogged about the importance of client integrity for companies as they develop their security strategy. My own company and I have recommended and integrated SSL VPNs for over 7 years, and have seen the client integrity aspects of these products morph and change quite a lot.
When it comes to strategy, make sure you look at SSL VPNs from the “end game” perspective. Download the White Paper for the big questions you need to ask. I hope they will help! My point is to never, ever, make an IT decision based on technology alone. Always make the business a partner.