Mar 242011

Mobility Security was a big concern with the CIOs at our last virtual roundtable. Several CIO Executive Series members have purchased iPads for themselves and their staff because they need to start testing access and security requirements.

During our roundtable discussion, one CIO Executive Series member mentioned he has over 200 iPads and 50 iPhones. The business units pay for the devices and service through ATT and Verizon. He secures the devices by:

1. Offering terminal services access to an RDP client in the ipad
2. Limiting corporate web services to OWA and Sales Force
3. Adding remote wipe capability
4. Preventing split tunneling of remote user browsing. Product recommended was Zscaler which loads on the firewall

Mar 232011

One question seems to be on every CIO’s mind…
How can our organization unlock YouTube, Twitter and Facebook and still be secure?  Well it can be done and here is a plan.

  • Virtual Applications set up in the DMZ
  • Kiosk Access
  • Set up a Virtual Internet Application Social Media Security Server  (See Diagram Below) in your DMZ to ensure you can give access to Facebook, Twitter, Youtube, LinkedIn, etc without compromising security
  • Kicker – Add a Separate Social Media non business grade line from Comcast to run streaming media and social media applications through.
  • Allow access to Facebook without compromising corporate bandwidth or adding virus and malware propagation risk through this channel by using Next Generation Firewalls through Sonicwall

If you have any questions or comments please email or tweet me!

Mar 092011

Secure? Please!

Here is a quote from my CTO at RedZone, “While testing the new SonicOS 5.8 code in our office that included the new application capturing signature database currently recognizing geometry homework over 2,800 applications and millions of malware threats, in the first few minutes we were able to see that Bill’s pc (that is me…. CIO Exec Series Founder) was sending data via the google toolbar even when he wasn’t using it. Also my team was able to see with SonicOS 5.8 that a single computer with Tweetdeck (a social media tool that consolidates Twitter/LinkedIn/Facebook communciation) took more bandwidth than we ever thought was possible and was more bandwidth intensive than synchronizing Exchange and DFS.”

Tweetdeck and Hootsuite and other social media are handy social media management software tools that marketing uses. The net net here is take control of your desktops. Any company that has to fly a mission “do no evil” is up to no good. Use these products as needed, but eliminate the tool bar.

It serves no good corporate purpose.

Summary – The SonicOS 5.8 has very versatile and powerful web 2.0 security controls for outbound traffic. Perfect!

If you would like more information about how to do this and what products are perfect for this let me know