Organizations, regardless of size or industry, can no longer afford to take cybersecurity for granted. Malware, phishing schemes, and ransomware attacks are only becoming more prevalent across businesses that have moved toward working remotely across the cloud.
According to a recent Q&A with Tallan security expert Marc Jacquard, “Users must be diligent in their processes for connecting to the office. In many cases, companies needed to build a more robust cloud infrastructure than they currently had. Companies had to build that infrastructure to support a remote workforce in some cases. Confidential information that had once been exclusively accessible in-house can now be accessed by systems outside the corporate network security structure.”
Tallan’s Security Assessment will determine how well your company is protected against cyber threats and provide guidance on bolstering your team’s security culture. This assessment is an audit and development of a new security strategy approach based on your current resources and objectives. Tallan effectively hones in on the primary areas that are often the most vulnerable, while examining your environment to offer subsequent education, assistance, and remediation recommendations for devices.
Tallan’s approach is rooted in conversations with your organization’s key players. An essential part of the Tallan process is partnership. We prioritize the ‘why’ and ensure your goals align with our proposed solutions. These discussions are followed by educational workshops that cover Zero Trust Framework, Cloud Adoption Framework best practices, and Azure/Office 365 Secure Score.
Tallan’s Security Assessment will determine how well your company is protected against cyber threats and provide guidance on bolstering your company’s security culture.
Assessment findings & recommendations following the workshops, where Tallan assesses and identifies security risks, gaps, and areas of concern using Azure, among other processes and tools. After prioritizing vulnerabilities, Tallan reviews your remediation options. Rest assured – all unmanaged devices, unsupported operating systems, and vulnerabilities are reviewed. Finally, Tallan facilitates planning with detailed next steps like cost consumption estimates, architecture, timeline, and implementation.
Case Study: Security Assessment Identifies 135,000+ Instances of Potential Data Loss
This national optometry practice and eyeglass retailer, which has over 800 locations in 28 states, helps patients by delivering comprehensive eye care and an extensive assortment of eyewear solutions. The client wanted to know more about their security vulnerabilities in their 0365 and Azure infrastructures. Tallan’s Security Assessment included an assessment of current security policies as well as the most vulnerable areas to attacks, such as user identification and endpoint security. This audit focused on DLP (Data Loss Prevention) and the transition to a Zero Trust infrastructure. Tallan provided well-informed advice on how to modernize this organization’s security posture, as well as a cost breakdown for addressing any security weaknesses at the high, medium, and low levels of the hierarchy.
To help this client better understand how the Azure Security Center fits into their objectives, Tallan began with educational workshops covering Zero Trust and cloud adoption best practices. Workshops included a scope and objectives discussion, a 2-day Ready Govern (Cloud Adoption Framework) workshop and a workshop centered around Azure Security Center. These knowledge sharing and review sessions worked to define the scope of essential security tools, frameworks, and best practices.
The client was concerned explicitly with preventing data loss because of HIPAA compliance requirements. Tallan assessed their environment, including servers, desktops, operating systems, and aging hardware. Tallan identified security risks through analyzing Defender for Cloud Secure Scores, Microsoft 365, Identity Secure Score and Azure Policy. The Secure Scores were reviewed to better their security posture, and Defender alerts were reviewed to demonstrate possible gaps in the security of the client’s infrastructure.
An essential part of the Tallan process is partnership.
Throughout this 2-week engagement, the Tallan team assessed 874 Active Directory guest users, 541 total resources, and 1,267 Azure policies. Tallan found, from a DLP perspective, this client had over 135,802 instances of classified data points, such as Social Security and Driver’s License numbers. There were also three inactive DLP policies in place prior to Tallan’s engagement, meaning, that if there was a breach, the client would not have been notified.
To close the engagement, Tallan and the client’s team reviewed recommendations to modernize their security posture. This included the full remediation of all uncovered security gaps. A customized plan forward included reference architecture for Azure services, cost analysis, and ongoing Azure costs consumption estimates. With a tested framework in place, the Azure technology that aids in our client’s provision of personalized eye care experience through trusted local optometrists is much more efficient and secure.
Get live expertise with Tallan’s experts during one of our virtual events! Cloud Security: Microsoft Defender for Cloud is coming May 11th. This webinar will provide education on Microsoft’s tools to help modernize your security posture, in addition to a review of the 7 pillars and 3 principles of security. Click here to register or view our past security events on our YouTube channel.
Want to learn more about Tallan’s Security Assessment? Get started on the Tallan Marketplace!