In the wake of the recent CrowdStrike outage, it has become
imperative for businesses to reassess and fortify their endpoint security
strategies to prevent similar disruptions. Such events not only underscore the
vulnerabilities inherent in current IT setups but also highlight the need for a
more robust and proactive approach to managing endpoint security.
To shed light on these critical issues and explore effective
strategies for enhancing IT resilience, VMblog spoke with James
Millington, Vice President, Industry Solutions for IGEL, who brings deep insights into how companies can be better
prepared with a Preventative Security Model approach.
VMblog: Can you discuss the lessons learned from the recent
CrowdStrike outage?
James
Millington: The CrowdStrike outage was a wake-up call, emphasizing that today's endpoints
are too vulnerable, and subsequently complex. While companies have been busy
upgrading their core infrastructure with improved security technologies
including identity and access management, conditional access and network
microsegmentation, the endpoint-where users actually interact with technology-
needs a fresh look. This needs to change to ensure a secure, modern computing
environment for end-users.
VMblog: What are the main vulnerabilities at the endpoint level?
Millington: Endpoints are often the weakest link in the security chain, prone to data
breaches and security risks as well as exposure to patching and update gaps.
The traditional Windows endpoint is particularly vulnerable due to its
complexity and the need for a heavy security stack. This complexity makes it
difficult to manage and secure effectively, increasing the risk of significant
operational disruptions.
VMblog: How can organizations mitigate these risks?
Millington: Moving Windows to a cloud-based model using technologies like SaaS or DaaS
simplifies the endpoint structure. With the application workloads no longer at
the endpoint, we are able to rethink the security of the endpoint, locking it
down, reducing the endpoint's attack surface and significantly mitigating the
risk of breaches and outages.
VMblog: What advantages does IGEL OS offer over Windows in terms
of security?
Millington: IGEL OS is a read-only, encrypted Linux-based operating system. There is no
data storage at the endpoint so if the device is lost or stolen, no customer,
patient, financial or IP will be compromised. With these changes, we eliminate
the need for the complex security stack. This change in the approach to security
was especially evident during the CrowdStrike outage where IGEL users were
unaffected. Linux's growing adoption is a testament to its security and
stability, which makes it a suitable choice for enterprises looking to enhance
their endpoint security.
VMblog: How does the use of IGEL OS at the endpoint benefit IT
operations?
Millington: IGEL's Preventative Security ModelTM allows for a more streamlined connection to
cloud-based Windows or SaaS applications. This approach minimizes local Windows
management issues and reduces the IT administrative burden. Moreover, the Linux-powered
OS supports a wide range of enterprise browser, DaaS, and VDI platforms,
enhancing its versatility in corporate environments.
VMblog: What proactive strategies should businesses adopt to
prevent future outages?
Millington: Businesses should focus on preventative security strategies tailored to the
hybrid work model. Adopting a secure, read-only OS, which can also support quick
recovery and robust security features, can significantly aid in business
continuity and help mitigate the effects of both accidental outages and
deliberate cyber-attacks.
VMblog: What are the future challenges IT operations might face?
Millington: The continuous evolution of applications, AI, and the need to remain digitally
competitive will keep adding complexity to IT operations. Despite meticulous
planning, disruptions are inevitable. However, transitioning to more robust,
simplified, and resilient systems can provide better support and recovery
options, helping IT operations adapt and thrive in a changing technological
landscape.
##
James Millington is Vice President, Industry Solutions at
IGEL, the leader in providing
a secure endpoint OS that is designed for VDI, DaaS, SaaS and secure browsing.
Leading IGEL's product and vertical market strategies, Millington has helped to
define the IGEL Preventative Security ModelTM which removes attack vectors often
exploited by bad actors. Prior to joining IGEL, Millington held key leadership
roles at VMware, Imprivata and Citrix. Millington holds an MBA from Oxford
Brooks University.