The law firm executive says he is always looking for new ways to further improve the company’s digital security and stay one step ahead of increasingly sophisticated cyberattacks.
“It’s all about being able to close the loose ends on your network that offer attackers a weakness to exploit,” he says.
Historically, the law firm has used multiple technologies for securing its data and systems, such as endpoint detection and response (EDR) tools, anti-virus software for employee laptops, and ransomware detection for file systems.
But before Illumio, it lacked strong methods for protecting “the back office” — all the applications and data that run its business operations — now living in both data centers and cloud platforms.
The executive recognized that microsegmentation would be a key way to bolster protection of these systems.
By being able to easily control and block pathways of travel down to the application level, the firm could greatly limit the “unlocked doors” that so often make it easy for cybercriminals to move around networks to steal data and hold companies hostage, he explains.
When he began his search for a microsegmentation platform, he found that conventional approaches for segmentation just didn’t work the way they needed to.
“I wanted to gain better control over our network communications, but I knew I couldn’t do it with methods like manually restricting access control lists on physical network switches,” he says. “It just takes too much manpower to program those, and, then, how do you map all of that afterwards?”
Illumio solves these challenges, the executive says.
Based on extensive vetting and guidance from leading analyst firms, the executive selected Illumio to bring simple, scalable Zero Trust Segmentation to his organization.
“Illumio gives you the visibility and control over application communication flows in ways that you don’t have with any other security solution,” he says. “With Illumio, you can easily go through your policies and make updates and modifications as necessary.”
The executive says Illumio’s ability to seamlessly provide the same segmentation capabilities for cloud workloads as for on-premises data centers was also a big selling point.
“You can’t just think about the confines of your own data center,” he says. “Hybrid cloud computing is a reality today. Rather than be bound to a network hardware solution or a virtualization platform, we wanted to go with a best-of-breed SaaS platform that gives us the flexibility we need. I’d say Illumio is just that.”
Certainly, the law firm is more than happy that Illumio was in place, ready to help it defeat ransomware and avoid damage to its operations, its clients and its reputation. It is now focusing on expanding Illumio to enforce policy across a much broader range of its IT estate.
“In this day and age, it’s essential to implement microsegmentation to limit lateral movement from any attacker or malware that gets into your network.” he says. “It is only a matter of time before you have your own breach. So you need to be prepared.”