Transcript
numerous German authorities and public institutions have been victimized by cyber attacks. C-Scaler can help you to overcome the challenges that arise from this and I'll show you how. The challenge that almost everyone is confronted with, for sure, is that there are various outdated infrastructure. This means that you run solutions that are either no longer in support, you have devices like IoT and OT devices that you can't patch at all, or you have legacy security stacks that are in operation and still offer various attack areas or weak points. Segmentation is an issue that results from this, because if my networks are inherently insecure, I actually have to make sure that everything within these networks is as well as possible isolated, so that at least in a cyber attack, the attack does not spread directly to my entire infrastructure. It has been shown in the past that there are serious weaknesses in cybersecurity, for example due to outdated audits or due to weaknesses within applications. Especially in cybersecurity, there is a large shortage of experts and it is difficult to gain new experts, which then affects the operation of all solutions or the construction of a meaningful security architecture. What risks are now emerging? For example, that I use legacy access methods such as VPN and VDI, I always have an attack point from the point of view of the Internet. This means that if these methods have a weak point, hackers can find these gateways, attack and infiltrate their network. Then there is the issue of the missing segmentation between, for example, their central and external location and then threats can spread to the entire network if there is a cyber incident in one of these parts of the company. Then there are also some risks in the area of the Internet from insufficient protection. Once data can leak and this then leads to, for example, DSGVO penalties or compliance violations. Then nowadays I only need a browser to run applications. That means here in the cloud I suddenly have the risk of shadow IT again. And if I can't control which applications my users consume here, then I can't control how data flows there and how data is processed in it. Then there are various risks due to incoming data traffic. For example, I have to prevent my users from clicking on phishing links or downloading ransomware. What is Zscaler doing now to help you with these challenges and, above all, to mitigate these risks? Zscaler operates the Zero Trust Exchange, for example in data centers in Germany, in Düsseldorf, Frankfurt and Munich. The whole thing is also BSI C5 certified or ISO 27001 compliant. It also has built-in functions for business continuity and disaster recovery. What are we doing now in the Zero Trust Exchange? We connect your users with the next best and next-of-kind Zscaler data center. And here there is a complete security stack so that the users are always protected when they access the Internet and, for example, the flow of data, the call-up of phishing sites or the download of ransomware can be prevented. You can also use Zscaler to limit which cloud apps your users can use and to give them the visibility to find out which SaaS applications are being used. The whole thing applies not only to users who, for example, sit in the home office, but also in an office, in a branch on site. They also connect directly with Zscaler and have the same protection. And with that we are already creating a consolidation of the security stacks. Furthermore, wherever the applications are, we always place connectors that allow access to the applications without being exposed to the Internet. This means that this attack area, which is usually lost with VPN and VDI, disappears and the entire data center and its critical applications become invisible to hackers. If I now want to connect a whole location, we can operate physical or virtual Zscaler edges there and they then enable, for example, to send a device such as an IoT or an OT device to Zscaler so that it enjoys the same protection. And you can already see that when I operate this entire construct for my infrastructure, it means that a lot of what I usually had to do as a point product on-premise becomes obsolete. A great side effect that I then have is that I have automatically achieved a segmentation between my users and the applications. This means that this topic of segmentation and micro-segmentation comes almost automatically. But also the segmentation between applications is possible with Zscaler, so that when I install an agent, for example, on my application servers, it can be checked which server can talk to which server and I can achieve a segmentation there without having to touch my data center and its critical applications become invisible to hackers. The last question is, how can I secure IoT and OT devices? These Zscaler edges can place every device that is in a network in a network from a single host, so that even without me being able to install an agent on these devices and without network changes, these devices can enjoy the same protection. Let's now look at what challenges Zscaler can solve and how we can help them. I think you have seen that we can definitely help you with the outdated infrastructure. With segmentation, you have out of the box, so to speak, it happens automatically with us. The cybersecurity is massively increased by this global approach with central configuration. We also help you with the lack of specialists because you can use the Zscaler platform as a software as a service and therefore only be responsible for the configuration, but not even for the operation of the solution. If it is not possible for you, despite our numerous certifications, to use our data center in Düsseldorf, Frankfurt and Munich, you still have the opportunity to run parts of the Zscaler platform virtually in your own data center. We at Zscaler have a team that specializes in the requirements of authorities and public institutions. Therefore, feel free to contact us if you have any further questions. Thank you for your attention. See you soon.
