安全的远程访问应急准备

如何确保企业弹性、用户生产力和安全性。

时刻准备

为了顺应形势以及遵从法律义务的要求,各组织需激活或快速扩展远程访问功能,以响应业务连续性发展战略。除了影响员工的生产效率,紧急转移工作场所还可能给 IT 基础设施和运营带来压力。通过高级计划,我们可以打造即时、可扩展和灵活的远程访问功能,以此应对突发危机,使企业免受威胁暴露、网络攻击和数据泄露风险。

Top Tips

Here are some important Secure Access Emergency Readiness tips to ensure business continuity, operational efficacy and protected accessibility.

范围

范围

Understand your remote access needs in terms of users, applications and resources in order to assess respective physical, virtual or user-based connection capacity and throughput.

容量计划

容量计划

Identify key applications and resources, whether on-premises or cloud, that will require increased capacity and apply to an emergency capacity plan.

容量弹性

容量弹性

Explore application and security tool license and capacity shifting options set in advance with your vendors to handle burst utilization.

适当访问

适当访问

Review and maintain application, data and role mapping to ensure users only access the resources they need. Have processes in place to quickly respond to user or role escalation and ad hoc privileged access and revocation.

部署

部署

Consider virtual and cloud environment deployment and clientless mode to allow for more rapid on-demand deployment and scale options.

灾难恢复

灾难恢复

Establish Disaster Recovery (DR) sites to provide secure access services in case of a primary site outage or failure and explore Secure Access solution’s DR options for active/active or active/ passive modes.

通讯

通讯

Build, publish and review emergency remote work guidelines, resources and communications.

可用性

可用性

Activate advanced secure access usability features for streamlined access, such as: always-on, per-application and simultaneous tunneling, configuration lock down, clientless operation and online portals.

特权用户

特权用户

Ensure emergency means to simulate on-premise access, including Layer-3 access to a specific subnet, HTML5 access to local machines, or Virtual Desktop Infrastructure by privileged users and technicians.

终端合规

终端合规

Enforce endpoint compliance policy and activate self-remediation capabilities to reduce phishing and ransomware threats introduced by increased remote users and potential vulnerable devices.

移动设备安全

移动设备安全

Invoke mobile device security options, such as mobile VPN, device security, segregating corporate apps and information, and data encryption to allow for broader corporate and personal device use.

行为监控

行为监控

Utilize Adaptive Authentication and User Entity Behavior Analytics (UEBA) to better understand and react to new user/device usage, as well as unwanted and anomalous activity.

应用交付

应用交付

Leverage usage analytics and optimal gateway selection capabilities to better distribute workloads and to deliver “essential” applications to users without performance degradation.

评价

“Pulse Secure 使我们能够在新冠疫情期间支持大多数员工远程工作。”

– 大型运输服务公司首席技术官 (CTO)