Will Reed, CISSP, CMMC-RP, PCIP, CSM’s Post

CMMC asset categories are not mutually exclusive. 🔹CUI Assets may provide security capabilities (through native hardening), making them a Security Protection Asset (SPA). 🔹Some SPAs might need to process CUI to do their jobs (SSL proxies, SASE, DLP, etc.). 🔹Other SPAs 𝘤𝘰𝘶𝘭𝘥 handle CUI, making them a CRMA. If you want to reduce the 800-171 burden for security tools, make it so they 𝙘𝙖𝙣𝙣𝙤𝙩 store, process, or transmit CUI. File encryption, ZTNA tunnels, and router-on-a-stick deployments can eliminate CUI access by security tools, reducing scope, cost, and complexity.

NIST’s Authentication Assurance Levels can guide how we protect our digital environments. AAL1 covers low-risk scenarios with more traditional passwords, AAL2 enhances protection for moderate risks by adding another factor, and AAL3 ensures the highest level of security for critical systems with strong multi-factor authentication and often hardware authenticators like Yubikeys. Knowing which level suits your needs can make all the difference in keeping systems secure. If you want to know more see here: https://lnkd.in/gVQY_CiN

Considering Security Services Edge for your organization? The proof is in the pudding.. or; in this case, testing.

Looking for the top choice in Zero Trust Network Access (ZTNA) and Security Service Edge (SSE)? Look no further. Check out Miercom’s 2024 SSE Benchmark Report to see why Cisco Secure Access stands out as the leader in: - Security efficacy - Manageability - Performance #ZeroTrust #ZTNA #NetworkAccess #SecurityServiceEdge #CISCO

Not only fast but secure also😎

As support for TLS 1.0 and 1.1 ends on 31st October, it's crucial to upgrade to newer versions for better security. Vertali can help! As new TLS versions are developed, previous versions become outdated for vulnerabilities or technical reasons, and should no longer be used. If you’re not on TLS v1.2 already, we’d recommend upgrading for best-in-class encryption. But if you want to truly protect your operations, you need to move to TLS v1.3. However, we know upgrading can be a challenge, especially if it’s unclear what versions of TLS you have in use: many versions can be in use across an estate. The key first step is understanding your current encryption levels, then tracking what percentage of encrypted connections are migrated, and which remain. Vertali's Network Discovery as a Service is your start and end point: you will gain a complete picture of all TLS connections, and following the upgrade can assess and confirm full conversion and a successful migration. Find out more: #zTrustforNetworks #VertalizTrust #TLS #mainframe https://lnkd.in/eYDtbw4s

At TSS, we understand the struggle of keeping up with the constantly changing standards of ATM and network security. That's why we've developed a multi-faceted approach to ensure that we're prepared for these changes. Check out our new blog post where we share these insights so that you can stay ahead of the curve. https://lnkd.in/dk2JwGvR #DependableSolutions #NewBlogPost

Are you evaluating Zero Trust Network Access (ZTNA) and Security Service Edge (SSE) solutions? Look no further!! Miercom, a top independent security testing and certification firm, recently evaluated 𝗖𝗶𝘀𝗰𝗼 𝗦𝗲𝗰𝘂𝗿𝗲 𝗔𝗰𝗰𝗲𝘀𝘀, measuring it across critical categories like efficacy, manageability, and performance. The result? Cisco emerged as a clear leader, outpacing Zscaler, Palo Alto, and Netskope in these key areas. Here are the highlights from the 𝗠𝗶𝗲𝗿𝗰𝗼𝗺 𝗦𝗦𝗘 𝗕𝗲𝗻𝗰𝗵𝗺𝗮𝗿𝗸 𝗥𝗲𝗽𝗼𝗿𝘁: • 𝗧𝗼𝗽 𝗠𝗮𝗿𝗸𝘀 𝗳𝗼𝗿 𝗖𝗶𝘀𝗰𝗼: Miercom awarded Cisco top scores across multiple efficacy categories. • 𝗘𝘅𝗰𝗹𝘂𝘀𝗶𝘃𝗲 𝗔𝗜 𝗖𝗵𝗮𝘁𝗯𝗼𝘁 𝗣𝗿𝗼𝘁𝗲𝗰𝘁𝗶𝗼𝗻: Cisco Secure Access was the only solution that successfully controlled AI chatbot access and protected source code. • 𝗦𝘂𝗽𝗲𝗿𝗶𝗼𝗿 𝗠𝗶𝗰𝗿𝗼𝘀𝗼𝗳𝘁 𝗮𝗻𝗱 𝗚𝗼𝗼𝗴𝗹𝗲 𝗦𝘂𝗶𝘁𝗲 𝗜𝗻𝘁𝗲𝗴𝗿𝗮𝘁𝗶𝗼𝗻: Cisco SSE provided the best experience for popular office suites. • 𝗨𝗻𝗶𝗳𝗶𝗲𝗱 𝗔𝗰𝗰𝗲𝘀𝘀 𝗣𝗼𝗹𝗶𝗰𝘆 𝗘𝗻𝗴𝗶𝗻𝗲: Cisco's smooth switching between ZTNA and VPN with a single app access policy engine stood out, benefiting both users and IT teams. • 𝗟𝗼𝘄-𝗟𝗮𝘁𝗲𝗻𝗰𝘆 𝗣𝗲𝗿𝗳𝗼𝗿𝗺𝗮𝗻𝗰𝗲: Cisco's lower-latency DNS performance enhanced the user experience, setting it apart from competitors. Download the full report to discover why Cisco is leading the way in ZTNA and SSE solutions. #ZeroTrust #SSE #Cybersecurity #CiscoSecure #ZTNA #NetworkSecurity

Download Miercom's 2024 SSE Benchmark Report and see why Cisco Secure Access was named the leader across security efficacy, manageability, and performance metrics: https://cs.co/6045qKggU #ZeroTrust #NetworkAccess #ZTNA #SecurityServiceEdge

The top 4 attacks (and more) in OT/control systems can be stopped or reduced by adopting zero trust networking into IT and OT systems. Luckily, some vendors in the ICS/OT space are starting to embed zero trust networking into their so that as they need to communicate across the network (whether in a factory E-W or out across WAN N-S), they are doing it on the basis of strong machine identity, authenticate-before-connect, outbound-only connections and more. They agree with Jen Easterly, "we don't need more security products, we need more secure products". https://lnkd.in/e7dDWyXz