Despite enterprises spending more and more on cybersecurity, the frequency and impact of knowledge breaches and cyber-attacks continues to grow. Analyst forecasts expect world cybersecurity spending to keep growing between now and 2022. Data breaches not only occur more typically than ever before, but more incur rising prices on affected organizations. That begs the question: are business and IT leader’s investment in the right defenses?

The answer lies in but enterprises order their security spending. VMware’s internal analysis suggests that up to 80 percent of all enterprise IT investments come in strictly reactive security measures – in other words, taking part in catch-up with threats that we are seeing it emerge and evolve at a quicker pace. The result – constant bolt-on additions to termination security with restricted integration and enterprise-wide visibility. As a result, enterprises find themselves with a patchwork of purpose defenses that proves costly to take care of and progressively porous to more refined threats.

For enterprises to mend cybersecurity, they have to embrace it at the foundational level of their infrastructure by “baking it in” to their network, apps, containers, and every other component of IT operations. By turning their infrastructure into its own best defence, IT leaders will considerably shrink the threat surface of their organisations and weigh down the frequency of palmy attacks permanently.

Simplify Security

Most enterprise security methods, as mentioned, believe heavily or only on termination product and perimeter defenses. Intrinsic security, on the opposite hand, revolves around embedding security principles into the DNA of various infrastructural components – significantly the network. After all, if we secure the network, threats may be stopped before they compromise apps or information.

How will enterprises establish a universally secure network cloth that will this? Network virtualization makes doing thus considerably easier, giving IT consolidated visibility and management over all components of the network. If the software system layer that governs the network remains secure, this too can all the opposite infrastructure components that it connects. Doing this allows larger automation of security processes and principles, minimizing the risks that human error or inharmonious practices can produce vulnerabilities in the network.

As organisations embrace cloud because the “new normal” for his or her infrastructure, securing these cloud-native environments – what decision the virtual cloud network – can more and more happen at the platform instead of termination level to be effective. Enterprises would like a platform which will offer really intrinsic security all the approach from cloud to termination via the network, a task that may involve delivery along existing strengths in network virtualization with investments in cloud-native security and analytics technologies. But at a more basic level, the enterprise community should not only take into account where their security capabilities reside, but the fundamental principles by which those capabilities work.

Currently, most solutions “chase the dangerous,” which suggests checking out and combating malicious traffic or behavior whether it happens against or among the organisation. That, however, needs these solutions to recognize what “bad” means that, a method that becomes tougher and tougher as malicious actors previously improve the speed and class of their attacks. The continued success of Day zero attacks and Advanced Persistent Threats, each of them believe their behaviors not going to be recognized by cyber defenses, counsel that even the foremost well-resourced reactive solutions cannot catch up with their adversaries.

Detecting Loopholes at finding accurate fixes

The alternative – proactive security solutions that focus instead on “protecting the nice” rather than attempting to spot malicious activity, many proactive solutions allow apps and behaviors that they recognize to be safe and real. Virtualization code, encompassing all parts of infrastructure and apps among the organisation, will quickly learn what this “known good” behavior entails – a decent example of intrinsic security in action, where the infrastructure itself contributes to its own defence.

Such approaches not only shrink the attack surface obtainable to even subtle threats, they also minimize the enterprise’s reliance on constant updates to threat signatures and databases. Cybersecurity groups not have to invest immense amounts of resources attempting to spot and counter the most recent threats: the network itself mechanically blocks something that it doesn’t recognize nearly as good behavior.