Data Center security

Hi there!

This week we’re going to focus on security. This post is going to talk about the security we have to implement on our data center. Will be using Checkpoint solutions. Security is one of the most important points due to criticality of the data in a bank.

As we mentioned in a previous post, Checkpoint is one of the most important company that offers security solutions for business, campus or even Data Center networks. According to the needs of the company, they offer different type of solutions and products.

On a data center only the 20% of the traffic goes in and out of the data center, the rest, the east-west traffic is not visible to parameter security controls. So any thread inside the data center can move unimpeded to attack critical databases and applications security can no longer exists just at the data center perimeter.

If we virtualize using vmware a possible solution would be the use of vSEC for VMware NSX. This software solution is design for the scale and elastic nature of private cloud data centers as virtual machines. If an infected virtual machine is detected it will be immediately tagged by vSEC so it can be quarantined and remediate, this way the infection won’t be spread over the data center.

On the following link you can have more information: https://www.checkpoint.com/products/vsec-vmware-nsx/index.html

Besides we’ll have to guarantee the security in the traffic going in and out of the Data Center, for that we’ll be using a firewall. We’ve decided to use 23000 Security Appliances which combines protection with date center-
grade hardware to maximize uptime and performance for securing the most demanding large enterprise and data center environments.

You can read more information about this firewall on the link: https://www.checkpoint.com/products/23000-security-appliances/index.html

If you have any question do not hesitate to ask!

See you next week!!