Server Security Services from Keep IT Secure.

SERVER SECURITY

Introduction

The vast majority of organisations in all industry sectors and professions use IT systems to hold and process business critical information. The databases and associated traffic that these systems contain and manage is often held on server(s) that also host the software applications and provide integration with email, internet access, etc.

Very often these servers are also connected externally through communications networks enabling integration with other systems. Email and internet are examples however there are many other applications such as electronic trading and information exchange which demand integrated network facilities. It is this integration which increases the possibility that the servers may be illegally accessed. Once the servers become externally connected they become a target for hackers, criminals and malicious attackers.

Servers require protection and it needs to be effective. New threats are arising all the time, it is consequently important to get them secure and keep them secure.

It does not necessarily follow that because for example a firewall is in place that the servers are sufficiently protected. Neither does it mean that unauthorised access by other means is not relatively easily achievable by anyone with the necessary technical know-how. If there is a way to break into the network the modern day hacker will find it and once inside they can readily access the servers unless additional protection has been implemented.

Think about it, servers are where typically the lifeblood of the business resides. Customer details, accounts information, price lists, product or service descriptions, spreadsheets, private documents, etc, etc – these are all housed on servers often on the assumption it is a safe place for them to be. Maybe it is but can you be certain unless you have had that independently checked?

Threats

  • Information held on servers is often business critical but also highly sought after.
  • If servers are compromised the business will almost certainly suffer disruption and cost.
  • The consequences of sensitive data being stolen or damaged can be far reaching.
  • There are legal and data protection implications for the business if information is illegally accessed.
  • Inadequate password or other security procedures make unauthorised access easier and more likely.
  • Unless specific cover has been taken out it is highly likely that the business does not have insurance protection to cover these eventualities.

Mitigation measures

Standard protection such as firewall, virus detection, spam filter, etc all have an important role to play in preventing access through the network. However it is still necessary to protect the servers in case network protection is penetrated. Many off the shelf products provide limited cover but do not present a serious obstacle for an experienced hacker or reasonably capable automated malicious software tool. It is the servers which primarily need such protection because of the obvious attraction their contents have for unauthorised predators.

It is likely that password protection and other access security policies will be in place (speak to Meritec if you are unsure about this) however these can be very easily circumvented or even exploited by a capable hacker. Consider also that many attacks are perpetrated by in-house staff or ex employees who may well have decent knowledge of such procedures. Additional measures such as encryption provide an additional barrier and are normally recommended however these require expert implementation otherwise system performance may be compromised. There are also many types of encryption available to suit different requirements and it is important to make sure the right one is implemented for the specific job at hand.

Even where the right protection is implemented there can be no substitute for ongoing verification that those defences remain effective. Meritec monitoring services provide such assurance by constantly checking network and internal systems protection whilst also proactively alerting sites to new threats which arise and which could apply to their infrastructures.


Back