TECH TRENDS nation-state cyberattackers , continuous monitoring is essential ; any lapse can let attackers have access to a system , even if just momentarily .
So , how can government agencies protect themselves and their employees from potential losses ? Generally , the best practices for corporations apply to government agencies as well .
Cybersecurity guidelines for government organisations
• Use advanced DNS protection to defend against the widest range of DNS-based attacks .
• Use a DNS firewall that automates malware protection .
• Detect and prevent data exfiltration by utilising DNS-based analytics .
• Use a centralised , cloud-managed , provisioning , management and control solution , designed with the modern borderless enterprise in mind . This is what is needed to eliminate the management complexity and bottlenecks of the traditional branch office DDI .
• Deploy a virtual DDI appliance on a public or private cloud , which can enable you to deploy robust , manageable and cost- effective appliances .
• Have an incident response and backup plan . Test the plan on a consistent basis and adjust as necessary .
• Have a consistent security policy across all platforms . For example , if you are leveraging cloud services , ensure they are secured as you would on-premises .
• Ensure you are actively monitoring and managing DNS within your organisation .
• Use comprehensive threat intelligence to proactively block malicious DNS threats .
• Monitor and manage the behaviour of DNS in your environment – black-lists are not enough ; you need to ensure that the protocol is behaving as appropriate .
• Restrict use of DNS over TLS ( DoT ) and DNS over HTTPS ( DoH ) on assets and on the network .
• Know where your users ( assets ) are going from a DNS perspective , no matter where they are located ( on-premises , working remotely , etc .) Have a 360-degree view of all assets .
• Automate responses where possible to leverage your current infrastructure . There is no silver bullet when it comes to security , but you can solidify your posture by using defence in depth and automation . x
THERE IS NO SILVER BULLET WHEN IT COMES TO SECURITY , BUT YOU CAN SOLIDIFY YOUR POSTURE BY USING DEFENCE IN DEPTH AND AUTOMATION . www . intelligentcxo . com
17