Menu
Keeping a trusted eye on today’s NZ Govt networks

Keeping a trusted eye on today’s NZ Govt networks

New Zealand government agencies must continue to evolve their IT networks to more carefully manage the risks of cyber attacks, exploitation, and data loss.

New Zealand government agencies must continue to evolve their IT networks to more carefully manage the risks of cyber attacks, exploitation, and data loss.

That’s the view of Gavin Coulthard, Manager Systems Engineering of Australia/New Zealand, Palo Alto Networks, who believes many government organisations are shifting their cyber security approach across the country.

Achieving this by moving away from a collection of point solutions, ad-hoc entities, and processes towards a more deliberate structure, Coulthard says this structure is known as a “dedicated Security Operations Centre (SOC)” to manage and monitor a unified security architecture.

“The sheer magnitude of government IT systems that most SOCs protect drives the need for an intelligence-centric approach,” he explains.

“The most basic aspect of this approach is a comprehensive understanding of the specific government IT environment used to deliver services to the government agency or agencies.

“Likewise, an understanding of the government’s enterprise network topology, including all connections (internet, mission partners, cloud providers and vendor specifics) is needed for an understanding of attack vectors.”

In its infancy, Coulthard believes the SOC will most likely be reactive.

“Ultimately, though, the SOC must engage in threat identification and understanding to develop a proactive cyber security approach,” he adds.

“Building a SOC may seem onerous but the payoff, with improved visibility, intelligence, and protection for the government in challenging times, will be well worth it.”

As a result, Palo Alto Networks advises a four-step framework that form the foundation of a new or revitalised SOC:

1. Identify an executable mission

Creating a SOC should be approached the same way the organisation approaches every new project. This should include whom the SOC manager will report to and where it will be located organisationally.

2. Identify the services offered

Fewer services delivered well is better than many services offered poorly. Basic core SOC services include: outreach and education of cyber security, cyber security incident management and IT vulnerabilities management.

3. Document the mission and services

Once the SOC baseline mission and services are established, it is important to document the future growth and objectives.

Two documents can assist with this: the blueprint, an operational document which describes the SOC architecture and the roadmap, which maps the SOC’s future growth and goals.

4. Acquire the necessary people, processes, technology and intelligence

Once the foundational steps are completed, the organisations can acquire and develop the appropriate people, process, technology, and intelligence to align with the mission and the services.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags governmentsecuritypalo alto networks

Featured

Slideshows

Reseller News launches new-look Awards at 2018 Judges’ Lunch

Reseller News launches new-look Awards at 2018 Judges’ Lunch

Introducing the Reseller News Innovation Awards, launched to the channel at the 2018 Judges’ Lunch in Auckland. With more than 70 judges now part of the voting panel, the new-look awards will reflect the changing dynamics of the channel, recognising excellence across customer value and innovation - spanning start-ups, partners, distributors and vendors.

Reseller News launches new-look Awards at 2018 Judges’ Lunch
Kiwi channel debates GDPR as Reseller News Exchange hits Wellington

Kiwi channel debates GDPR as Reseller News Exchange hits Wellington

This exclusive Reseller News Exchange, in association with Arrow ECS ANZ, ForeScout and StorageCraft, went on the road to debate the early implications of GDPR in New Zealand, extracting opportunities while evaluating challenges for the channel in the year ahead.

Kiwi channel debates GDPR as Reseller News Exchange hits Wellington
Show Comments