GFT
Enhancing security with NIST Framework and Palo Alto Networks Cortex XSOAR GFT has also embraced the National Institute of Standards and Technology ( NIST ) framework to bolster its security design processes , something Dean describes as a “ sensible approach to securing a business ’ design and infrastructure ”.
He outlines the five core activities of NIST : Identify , Protect , Detect , Respond and Recover . Incorporating these principles into its design process , GFT applies them both to overall systems and individual components .
Dean expands : “ As part of our design process , we ’ ve adopted a similar approach for both the overall systems design when looking at it holistically and for each of the individual components that go into the design
“ We regularly run through NIST ’ s compliance tools with some of our designs to make sure we ’ ve not missed anything .”
To enhance its security framework , GFT leverages Palo Alto Networks Cortex XSOAR alongside native AWS security tools .
AWS WAF and Shield are primarily used as a defence against web attacks and DDoS assaults , while the AWS Security Hub provides a centralised perspective on security and compliance across AWS accounts . AWS GuardDuty plays a critical role in the overall threat detection strategy , monitoring for malicious or unauthorised activities on the AWS environment .
For incident management , Cortex XSOAR is integrated to automate responses and orchestrate security processes .
“ Our goal was to set a new benchmark for security and scalability and to build customercentric , cloud-first solutions where speed and responsiveness were imperative ”
DEAN CLARK CHIEF TECHNOLOGY OFFICER , GFT
16 gft . com