In today’s technological era, enterprise networks are continuously under threat. The threats are no longer originating from one source nor are they similar in nature. The advanced cyber threats have become very dynamic in nature. With the introduction of new actors like Wannacry and Petyaran some ware cyber-attacks, safeguarding only the network perimeters, which used to be sufficient for cyber security, are no longer holding ground. The traditional perimeters had very simple responsibilities – either permitting access or blocking access. They were no need of the access control to be either contextual nor the awareness of application was required. Today, the threats have become advanced and persistent emerging from multiple sources at the same time with the capability to morph themselves into a seemingly benign application which can hijack your network to behave in a completely carcinogenic manner.

All this is on expenses of emergence of multiple perimeters. These multiple perimeters are emerging due to the continual adoption of new disruptive technologies like mobility, cloud and virtualization. Hosted perimeters and the so called “secured internet gateways” are changing the nature of traditional perimeters and their boundaries as they have been defined traditionally. Mobile technologies are making distributed workforces a norm and most of corporate information and application is wandering on fragmented extended networks. To an extent, network edges are gradually becoming meaningless. There is a dire need of new security framework that defines the new perimeters and also dynamically decides how to detect the threat and secure them.

The need of the hour isto implement an adaptive security strategy with essential

features like application visibility and control, firewall based identity management, contextual web security and many more. The access restrictions should be defined based on the usage of the applications in the enterprise network. The integrated security strategy should be able to use directory integration to link to user identities and make full use of three key types of information related to vulnerability, patching status and geolocation. The security setup should be able to clearly make blocking decisions based on where the information source is, and where it is supposed to be to detect, protect and respond to the threats. A single view of the real time data from multiple sources, behavioral based anomaly detection and communication with the firewall plays an integral part of the adaptive security strategy on an enterprise level. Various industry experts have suggested cultivating threat intelligence in the architecture so that it can modify the firewall based on the perception of the threat or intrusive abilities. Nonstop monitoring and deriving analytics and insights is the core responsibility of any Adaptive Security Architecture. Some of the important objectives of an Adaptive Security Architecture are as follows:

• Curtails threat amplification by restricting its potential spread
• Reduces the surface area for the attackers
• Decrease the rate of attacks
• Quick response to attacks thus reduce the remediation time
• Facilitate attacks that try to limit resources
• Promote correctness by responding to attacks that intend to compromise data or system integrity

The threats are no longer originating from one source nor are they similar in nature. The advanced cyber threats have become very dynamic in nature

Adaptive security can adapt to the evolving policies, procedures, infrastructure, and threat landscape facing the public, private and the enterprise sector. For it to work properly,organizations need to understand their entire environment, access their cybersecurity risk and determine their risk tolerance. From knowing where the data resides in an institution to what level of controls are given to individuals, Organizations should proactively do the vulnerability assessment in order to identify how and where the attackers might target. By adopting the Adaptive Security model, organizations get a better definition of their strengths and weaknesses and more accurately access their security requirements, strategic investments, resource allocation and time.Happiest Minds Technologies’ integrated Cyber Risk Protection Platform (CRPP) helps organizations to automate, accelerate and orchestrate the threat defense lifecycle. The platform leverages multiple security technologies including SIEM, advanced and next generation network, endpoint security and deeper analytics with insights providing a unified approach to handle enterprise level threat lifecycle to address security holistically.