Today’s Internet and network security environment is very different from what it was just a few short years ago. As we’ve discussed, legacy tools, basic firewalls, and basic anti-virus/malware are no longer sufficient to keep your network safe.
Many districts have implemented next-generation firewalls. However, to be most effective, these new next-generation firewalls need consistent monitoring of its generated Event Logs. You should be consistently monitoring its many security information data feeds to ensure they are operating properly. You should also be monitoring the latest required software updates to ensure they have been applied. Attention to these activities assures that your firewall is performing at peak capacity in protecting your network.
Unfortunately, for many districts, the required consistent attention necessary to maintain security is an additional support burden that is difficult for district staff to maintain. This opens up districts to possible security exposures. Is your firewall trying to warn you about potential issues, but no one is listening?
This week’s suggestion:
- Talk to your Tech Director about what type of firewall you have, and if patches are being consistently applied, and Event Logs are being read
- Continue (or start) the process of coming into line with the NIST Cybersecurity Framework guidelines
Next week’s bulletin will discuss “Cyber Attack - Are you as protected as you think you are? (Part Four – Multi-Factor Authentication (MFA))”
If you would like more information on help with Firewall monitoring or navigating the NIST CSF journey, please contact Lisa MacDougall at lmacdougall@csiny.com or call 845.897.9480.