The average cost for each stolen or lost record for Australian organisations is $139. Healthcare is the most expensive industry for data breaches globally, costing more than 2.5 times the global average across industries. Australian organisations currently take more than five months on average to detect an incident. (1)

Hugo Hutchinson, Wavelink’s national business development manager for Fortinet, said, “Healthcare organisations need to be aware of their responsibilities to protect patients’ privacy and they need to stay on top of the threat landscape so they can take the most appropriate steps to protect the organisation. It’s therefore helpful to talk about the ‘security fabric’, which is a multi-layered approach that can include firewalls, cloud security, advanced threat protection, application security, access management, network operations centres, and security operations centres.

“Organisations should consider the fabric model because it delivers end-to-end control of the entire network even as it changes, as opposed to point solutions that can quickly become obsolete. The fabric approach speeds up threat analysis and response because it doesn’t require a central management system. In fact, it integrates and shares information among external solutions.”

The number of people and devices that need to access the network in a healthcare organisation can be high, making it hard to keep track of who is being given access to what parts of the network. Employees, patients, and visitors are all likely to use their own devices to access network services, along with the organisation’s owned devices. Managing all of these disparate endpoints is therefore challenging.

Hugo Hutchinson said, “Best practice is to enforce access policies for all users and devices. This requires micro-segmentation of the network using internal network security firewalls so people can only get into the parts of the network that they’re authorised to access. Using a fabric approach, healthcare organisations can exert even more specific access control with the agility to change as the organisation’s needs change.”

While it’s essential to have strong security policies and processes, it’s equally important that these don’t hinder the organisation from providing excellent patient care. This means applications need to perform as expected or better, without being compromised by slow packet processing, content inspection, or policy management processing. A fabric approach speeds these processes up so users don’t notice any difference in application performance.

This can be enhanced with automated security processes that eliminate the need for human intervention into security incidents, saving time and keeping networks up and running.

Advanced threat protection is key to minimising the risk of a successful cyberattack. This can take the form of sandboxing, which creates an isolated, secure environment to validate incoming threats then shares threat information with the security community to disrupt zero-day threats.

Hugo Hutchinson said, “Threats are emerging and evolving too fast for manual processes to keep up. Organisations can’t expect to adequately fight the growing threats just by throwing more resources at them; automation is the only answer. It’s faster and less error-prone than humans, and it’s better at prioritising threats so organisations don’t spend time fighting every apparent threat.

“An automated system means security staff can work on minimising vulnerabilities and educating staff to help reduce the impact of human error on the organisation’s security.”

Reference:
(1) 2017 Ponemon Cost of Data Breach report

In 2017, Wavelink appointed Hugo Hutchinson as national business development manager for Fortinet to ensure the rapid growth of its Fortinet security business, building on the existing wireless business.

After nine months with Hugo Hutchinson in the role, Wavelink is well ahead of its objectives. From a zero base, security now represents around 30 per cent of Wavelink’s Fortinet revenues and this share is growing rapidly.

Hugo Hutchinson, Wavelink’s national business development manager for Fortinet, said, “Wavelink’s overall objective has been to sell and support the complete Fortinet Security Fabric, focusing on both core network and perimeter security offerings , to its existing channel base, as well as expanding the base to new channel partners. By leveraging Wavelink’s expertise in selling Fortinet’s wireless solutions over many years, we have been progressively expanding our offering from perimeter security to now include core security offerings.”

Wavelink’s key differentiators include its wireless expertise, based on its large install base of high-density, high-traffic customers using advanced applications such as wireless voice. This extends to pre-sales support including free remote site surveys to enable accurate quoting.

Hugo Hutchinson said, “Wavelink continues to focus on key industry verticals, including education, healthcare, hospitality, retail, government and logistics. With the addition of a number of targeted new partners we believe that 2017 has set the foundation for a massive 2018.”

The laws being implemented overseas are far more stringent than those in Australia. The European General Data Protection Regulation (GDPR), being introduced in 2018, means that an organisation could be fined up to the greater of €10 million or two per cent of its annual revenue for failing to comply with the notification provision. (1)

Hugo Hutchinson, Wavelink’s national business development manager for Fortinet, said, “Standards implemented in Australia are often based on global and international initiatives. Irrespective of what happens in the future, small and medium-sized businesses (SMEs) must act now to plan for the NDB scheme, as it would be naïve to think this won’t be ramped up over time.”

Protecting against data breaches is essential for SMEs, many of which go out of business within six months if they face a data breach. According to the U.S National Cyber Security Alliance, 60 per cent of small companies are unable to sustain their businesses over six months after a cyberattack. (2) This means some type of security strategy is crucial to the business’s ongoing sustainability.

Many SMEs lack the resources to a take comprehensive security stance. But, despite a lack of in-house skills or budget, it is important that they at least start with the basics.

According to a company providing blockchain development services, one myth surrounding cybersecurity is that more advanced technology translates to stronger security. Cybersecurity teams often use powerful, cutting-edge technologies to protect data and other corporate assets but many threats can be mitigated using less-advanced methods. (3)

Hugo Hutchinson said, “There is no longer any excuse for SMEs to do nothing. Vendors are constantly working to offer scalable solutions that are accessible to every size business. SMEs should start by implementing a basic firewall and then work with a partner to create a 12- to 24-month plan to get security up to where it should be, and then review it regularly to stay on top of changes in the threat landscape.”

References:
(1) https://www.lexology.com/library/detail.aspx?g=8185429b-c98d-484a-9fce-890606c42804
(2) http://www.denverpost.com/2016/10/23/small-companies-cyber-attack-out-of-business/
(3) https://www.mckinsey.com/business-functions/digital-mckinsey/our-insights/hit-or-myth-understanding-the-true-costs-and-impact-of-cybersecurity-programs

Two major breaches have occurred in Australian schools this year and these attacks will continue to increase as schools are targeted with phishing, ransomware, and DDoS attacks. (1)

Hugo Hutchinson, Wavelink’s national business development manager for Fortinet, said, “A cybersecurity program in schools is no longer optional with all signs pointing to an increase in attacks over the next few years.

“It is important that principals, and the board, take a leadership approach to cybersecurity. Much like CEOs have been held to account in the business world, the same will be a reality for principals who are seen to do nothing when it comes to protecting private data in schools.”

Key components of a cybersecurity program in schools include:

1. Technology. Schools need to implement technology such as firewalls and network tools to monitor the environment. Network visibility will provide important information on breaches as well as on what students are doing on the Internet. Schools should extend security to students’ home environments by implementing client software, which applies the same security policies at home as it does at school.

2. Patch management. Security technology is constantly being updated and patched by vendors. It is important that, no matter what security software is in place, the school keeps up to date with patch management.

3. Reporting. The right reporting tools will provide the right information in the event of a breach such as which files have been compromised. This will help schools get on top of a breach faster.

4. Content/web filtering. Content/web filtering is essential in a school environment to protect the children by preventing access to unsecure or unsuitable online content.

5. Education and awareness. Cyber education is important for teachers and students. They should be aware of the policies and what to look for, and what to avoid, when using the network.

Reference:

(1)    https://www.schoolgovernance.net.au/2017/06/01/two-major-privacy-breaches-in-victorian-schools-paw-messages-more-relevant-than-ever/

When it comes to security, the channel plays an important role in helping organisations navigate their journey. Channel partners can help raise awareness and help customers plan to comply with new mandatory data breach reporting requirements, according to Wavelink.

Hugo Hutchinson, Wavelink’s national business development manager for Fortinet, said, “Organisations are constantly looking to technology to support business outcomes and drive business growth. To do this, they require partners that can support, manage and accelerate this. Security is an important part of this.”

To be successful the channel needs to be able to facilitate security conversations with all levels of business leadership, from the CEO to managing directors and CIOs. This requires a terminology change that is less about technology and more about mitigating risk, and supporting organisational goals.

Hugo Hutchinson said, “To do this the channel needs be up to speed with the current security and threat environment, and have regular training. All of this will help the channel communicate to organisations the importance of security investment in such a way that organisations will be receptive and willing to prioritise it.”

This is where vendor and distributor relationships are so important.

Hugo Hutchinson said, “As an extension of the vendor, distributors play a critical part in relaying information to resellers so they stay up to date, are aware of product, service and market changes, and receive training. For Wavelink, taking a multi-pronged approach to helping channel partners ensures that it is helping them assist customers in reaching their security goals.

“Through investment in in-house expertise to facilitate reseller growth, information sharing, workshops, webinars and promotions, Wavelink is proactive in ensuring its resellers are trained and upskilled in security to drive conversations with customers based on their understanding of organisational challenges and requirements in today’s complex security environment.”

-ENDS-

About Wavelink
Wavelink specialises in the supply, marketing and support of a range of leading edge technology solutions for the mobile enterprise.  Wavelink distributes a range of products from Spectralink, Fortinet, Spok, Olinqua and Digium. For more information please contact Wavelink on 1300 147 000.

Manuja Wijesekera, pre-sales solutions architect – Fortinet, Wavelink, said, “Given the explosion of hacking related security outbreaks in the past couple of years and the damage it can do to organisations, it is becoming more important than ever to remember that no matter what technology or security measure is in place, more often than not employees are the first line of defence. It is therefore important to take a multi-dimensional approach to protect your organisation.”

Ransomware, CryptoLocker, DDoS, and botnet attacks are increasingly commonplace in the corporate world.

Manuja Wijesekera said, “Whether it’s mistakes, a lack of understanding of what a suspicious email or content looks like, connecting unsecure devices to the network, or even inside threats from disgruntled employees, organisation’s are regularly being put at risk.”

Organisations need to mitigate this by making employee engagement part of their workplace culture. This includes making it a part of the onboarding and induction process as well as running regular security programs and awareness campaigns throughout the year. It is also important to make sure security teams are certified wherever possible.

Manuja Wijesekera said, “Employee mistakes are a common cause for security breaches and hackers are using the emotional aspect when trying to entice us to click on a link or open an infected file, hence the need for organisations to foster an environment where an employee can ask questions without being reprimanded or ask for help if they think they’ve made a mistake that might have put sensitive data at risk.”

For small to medium-sized businesses in particular, which may lack the dedicated resources for security, there is a very real possibility they are setting themselves up for a breach.

Manuja Wijesekera said, “The other issue is that many smaller organisations are not willing to invest at all until they have suffered a breach, which is often too late. Their network may even have already been penetrated without them knowing it because they don’t have the systems in place to track it.

“For larger organisations this is less of an issue because security has become a boardroom discussion, and CEOs and other high-level executives are being held to account when it comes to protecting sensitive information.

“Ultimately, all organisations need to look at making security part of their overall culture, and move away from the notion that having a single security device at the edge will make them secure. They should look for solutions and partners that can offer a fabric of security technologies with the importance given to technologies that are able to share intelligence. They also need to have a good governance program in place to maintain and monitor security in real time and an awareness program that includes all employees.”

K-12 schools face ever-increasing challenges in managing increasingly complex network security threats. While it’s key for schools to have the latest security and networking technologies, limited budgets can make it seem impossible to purchase and then find the resources to manage them.

Schools needs solutions that reduce complexity with end-to-end network and wireless access security, saves IT resources with centralised security management for endpoint, firewall, wireless, and WAN connectivity and provide comprehensive security across threat vectors.

Join Ashley Walters from Christian College, Geelong, Haris Chaudhry from Fortinet and Wavelink’s Manuja Wijesekera and Hugo Hutchinson in a panel discussion on ‘End to End Network Security for K-12 Schools‘.

Wavelink, a value-added distributor of technology solutions for the mobile enterprise, has announced two new appointments to ensure rapid expansion of its Fortinet security business, which will build upon its existing strong Fortinet wireless business. Hugo Hutchinson has been appointed as national business development manager – Fortinet, and Manuja Wijesekera as pre-sales solutions architect – Fortinet.

Hugo Hutchinson’s core focus will be on expanding the Fortinet channel. He will assist channel partners to identify opportunities in key target verticals, such as health and education, through providing opportunity sizing and scoping, and Fortinet business updates, as well as upskilling sales teams.

Hugo brings a wealth of Fortinet experience to Wavelink; his previous role was national business development manager – Fortinet at Ingram Micro NZ. He has also worked as national retail account manager at Altech Computers and international account management at Ingram Micro NZ.

Manuja Wijesekera will work closely with Hugo to provide pre-sales assistance to Fortinet resellers, including proof of concept implementation, technical training of partners and Cyber Threat assessments.

Manuja previously held the role of security and network lead at the Melbourne Cricket Club. Prior to that he worked as network administrator for Arlec Australia. He has extensive experience in designing, implementing, and managing security solutions for organisations with anywhere between 15 users up to 25,000 users.

Ilan Rubin, managing director, Wavelink, said, “Wavelink has a successful track record spanning several years distributing Fortinet wireless solutions. With the huge surge in cyber threats we see significant opportunity to expand our Fortinet security practice. The investment in Hugo and Manuja demonstrates our commitment to providing dedicated security resources to support our resellers in selling Fortinet solutions.”

Related post: Security Guard Services Companies Near Me.

Want a #free CTAP? Drop by @FortinetANZ stand #237 @EduTECH_AU?? pic.twitter.com/d6k6OWJaiz

— Wavelink AU (@WavelinkAU) June 8, 2017

Thank you Geelong Christian College for sharing your journey on keeping students digitally secure with #Fortinet at @EduTECH_AU pic.twitter.com/IoAfUfgNhS

— FortinetANZ (@FortinetANZ) June 8, 2017

Last day at @EduTECH_AU last day to #Win a spot at @FortinetANZ‘s Security Workshop stand #237 pic.twitter.com/rD84V7Yb27

— Wavelink AU (@WavelinkAU) June 8, 2017

Busy day at #EduTECHAU! pic.twitter.com/nMFFmJiEhS

— EduTECH (@EduTECH_AU) June 8, 2017

Healthcare’s core mission has always been to provide the best care possible. To support this mission the industry has turned to advancing technology. From medical devices to enhanced patient care, technology is considered to be the driving force behind improvements in the healthcare industry. The downside of technology improvements is that if not done securely will lead to increased risk of loss of confidential patient data and unauthorised access to technologies. In addition, they can also debilitate the day to day running of the institution.

This webinar will touch on some key concerning healthcare statistics, attack vectors and how the Fortinet Security fabric delivers unmatched and value-added security to protect the industry.

Join us for this webinar to find out how Wavelink, the Fortinet Security Specialist, can ‘Enable a Safer Healthcare Practice’.