Advertisement

Security News

11 Things To Have In Your Coronavirus Business Continuity Plan

Michael Novinson

From implementing user-specific access control policies and presenting applications through the cloud to preparing for staff augmentation and core system outages, here are the big issues a coronavirus business continuity plan should address.

More Granular Control Over Remote Access Rules

VPN provides users who are connected with universal access to the system, while a zero-trust model ensures employees don’t have access to anything other than the resources they need for the duration in which access is necessary, according to Dan Schiappa, chief product officer at Sophos. As a result, if an adversary gains control of a VPN connection, it also has access to the whole corporate environment.

Zero trust provides better controls over users and applications for traveling salespeople or remote workers, and provides equal access to all workers in departments like sales and accounting, which is probably sufficient, Schiappa said. But certain roles like malware researchers might require an encrypted channel to allow them to securely work with malware, according to Schiappa.

Unless both the resource and application are internal and cloud-based, Schiappa said it’s important for organizations to understand which users should have access to what materials. For instance, a technical company might have source code in the cloud, so figuring out who in the organization needs access to that source code might take time and effort, according to Schiappa.

 
Advertisement
Advertisement
Sponsored Post
Advertisement
Advertisement