homepage
Open menu
Contact Sales

Software-Defined Microsegmentation for Regulatory Compliance

  • Thursday, 02 Aug 2018 1:00PM EDT (02 Aug 2018 17:00 UTC)
  • Speakers: Jack Koons, Bill Parkinson

Running an information security program can be overwhelming. There are so many areas to address, from encryption to application security to disaster recovery to human nature. Adding to the complexity is compliance with regulatory requirements such as HIPAA, PCI DSS and the new EU GDPR to name a few. Scoping the systems that need to be regulated is one of the key strategies to reduce the cost and complexity of achieving and maintaining compliance.

Most of the regulatory requirements concerning protection of sensitive customer data require you to include not only the systems that directly store or process such data but also the systems that connect to regulated systems. If you are operating in flat networks, this requirement translates into "everything is in the scope of compliance audits".

Network segmentation is one of the must-have strategies to limit the scope, cost and complexity of compliance. The challenge in segmenting a network with static controls such as firewalls, VLANs, etc is the complexity of management and change. Access Control Lists (ACLs) and firewall rules can easily run into thousands of rules that have to be manually reconfigured every time there is a new application to be rolled out, or changes are introduced in regulations. The result is increased cost and complexity - the very challenge that you were trying to solve.

In this webcast, Unisys cybersecurity experts will introduce you to a new software-defined network microsegmentation that enables dynamic perimeters to isolate the critical assets without the cost and complexity of static controls. This approach reduces attack surface while also reducing audit scope, cost and management complexity. Microsegmentation is not segmentation. Segmentation is done for network optimization and performance, and should not be confused or conflated with security. Microsegmentation is a security concept first and foremost. Unisys experts will elaborate on microsegmentation concepts with particular emphasis on its use in support of compliance issues. They will then take you through illustrative examples of isolating and securing systems in the context of HIPAA, HITECH and PCI-DSS regulations.

Attendees of this session will:

* Gain understanding of key challenges in achieving and maintaining compliance

* Know the different types of network segmentation and their role - primary, secondary and microsegmentation, etc.

* Gain ccomprehensive understanding of software-defined network microsegmentation and how it can save you cost, effort and the frustration that static controls introduce

* Apply software-defined network microsegmentation to HIPAA, HITECH and PCI-DSS regulations using illustrative examples

Login to Register

Related Content

Blog
ECE_-_Blog_-_Enhancing_Your_Cyber_Defense-_Comparing_Simulations_and_Tabletop_Exercises_340_x_340.jpg
Cybersecurity Leadership
Enhancing Your Cyber Defense: Comparing Simulations and Tabletop Exercises
Simulation and tabletop exercises are both valuable tools for enhancing incident response and strengthening organizational resilience.
Chris_Wilkes_-_370x370_-_headshot.png
Chris Wilkes
read more
Blog
NIS2_-_Blog_-_Beyond_Compliance-_Leveraging_NIS2_for_Enhanced_Cyber_Resilience_and_Leadership_Accountability_340_x_340.jpg
Cybersecurity Leadership
Beyond Compliance: Leveraging NIS2 for Enhanced Cyber Resilience and Leadership Accountability
To meet NIS2 risk assessment standards, organizations have multiple steps laid out ahead of them.
370x370_James-Tarala.jpg
James Tarala
read more
Blog
NIS2_-_Blog_-_Empowering_Cybersecurity_Excellence_340_x_340.jpg
Cybersecurity Leadership
Empowering Cybersecurity Excellence: Certifications as the Keystone of NIS2 Compliance
NIS2 creates more uniformity and consistency in cybersecurity and resilience across vital EU industries.
Brian Correia
Brian Correia
read more