Punishment for non-compliance looms larger every day, and it's tempting to implement quick and reactive solutions that will, companies hope, in some way preserve data integrity, prevent data loss and prevent fines for non-compliance.
However, this is short-sighted. Many security solutions can, in fact, help to solve compliance issues and compliance solutions can help with security, but this is sometimes missed on the surface.
By layering security and compliance solutions together in a way that architecturally makes sense for your network, you achieve what I call "the three Es" essential to building technology: effectiveness, efficiency and economy.
A layered solution is more effective because it takes into consideration where on the network filtering can best be achieved. Security is more comprehensive and data is restricted to the areas that make the most sense.
For example, by blocking malware and viruses out in the cloud, these threats stay where you want them (away from your network). And by blocking outbound confidential data at your network gateway, confidential data stays where it should (within the confines of your network).
A layered solution is more efficient, not just for the technology but for your business. Solutions that can work in concert with one another are more efficient than those whose features overlap. Instead of recreating the same processes at different points in your network, in separate virtual silos, it makes sense to implement solutions that take advantage of those network locations themselves.
The economics of a layered solution become apparent almost as soon as you deploy one. Multi-layered solutions provide a lower total cost of ownership and reduce business costs, while providing a lower aggregation of products.
So, how do these benefits specifically help with compliance? Simply put, a multi-layered solution gives industries a chance to consolidate security and compliance requirements into layers that are clean and logical for each unique network.
In conclusion, networks must keep up with many changing requirements. Point products can pop up like mushrooms, addressing single issues at a single layer on the network. But by deploying a multi-layered solution that utilises the very roots of your network, you achieve compliance and security that is superior in its effectiveness, efficiency and economy.
Pat Sueltz is CEO of SurfControl.
Three E approach key to complicated compliance requirements
By Pat Sueltz, on Mar 26, 2007 10:34AM