Sophos NAC Advanced defends against the risks of unknown PCs trying to access the Great Yarmouth and Waveney NHS Primary Care Trust network Sophos NAC Advanced defends against the risks of unknown PCs trying to access the Great Yarmouth and Waveney NHS Primary Care Trust network - RSS feed from Security Park
(18/02/2009)

Great Yarmouth and Waveney NHS Primary Care Trust serves a population of more than 200,000. Given the rise in remote working and guests, including both contractors and patients, wishing to connect to the Trust’s network either for work purposes or simply for browsing the web, Great Yarmouth and Waveney NHS needed a solution that would enable it to control this access and ensure that every device met a baseline of IT policies. After performing a risk assessment, the Trust decided that a NAC solution was the best fit for its needs.

Great Yarmouth and Waveney NHS Primary Care Trust (PCT) in East Anglia has deployed Sophos NAC Advanced to defend against the risks of unknown PCs trying to access the network. In addition, Great Yarmouth and Waveney NHS’ new NAC (Network Access Control) solution enables the Trust to ensure that all of its own PCs and laptops are up to date with security patches and anti-virus protection, as well as setting appropriate access levels dependent on the employee. The solution was provided by Sophos Platinum Partner, Foursys.

The PCT consulted with Foursys, which provided presentations and demonstrations of Sophos NAC Advanced. Following this, it was clear to the Trust that the Sophos solution met all its requirements for a defence in depth model, providing a mechanism to simply control endpoint health and activity across the entire, physically dispersed network. Foursys deployed Sophos NAC Advanced throughout the PCT’s headquarters and to all PCs on the corporate network. The Trust can now enforce its security policies on both its own and guest PCs and devices.

For example, all devices must now meet a minimum security standard before being allowed access, and in order to protect its data still further, the Trust has set controls over which systems, if any, each employee and guest is authorised to access.

“With so many Wi-Fi enabled devices around today, many organisations are finding it difficult to effectively control who and what is accessing their network,” said Jonathan Hughes, VP Sophos UK. “Banning access outright risks negatively impacting productivity – many employees use their own hardware when working remotely, while visiting contractors or partners would be unable to use the internet and find the information they need. With NAC, Great Yarmouth and Waveney NHS Trust now has a flexible, yet secure, approach to managing its network, users and data.”

Using Sophos NAC Advanced’s flexible and phased deployment, the installation was successfully completed with no impact to end-users. The solution now monitors the status of anti-virus software, ensures patches and service packs are up to date on all machines and the firewall turned on. Any machines that deviate from this policy, whether they belong to the Trust, a member of staff or a guest, are isolated from the network and remediated to reduce any potential risk. Unknown devices seeking access are authenticated with a guest login, assessed to ensure they pose no threat, and are then provided with filtered access to the internet and prevented from accessing internal systems.

“Since implementing Sophos NAC Advanced, it has brought confidence and we now know that all endpoints are complying with our defined baseline policies,” said Andrew Brinded, IT services engineer for the PCT. “Another key factor is that we also have the ability to ensure that an issue is immediately resolved. It gives us the ability to say: ‘If you don’t comply with our policies, you get placed in a bubble and can only talk to a subset of the devices on the network’.”

The Trust was so impressed with the immediate benefits delivered by Sophos NAC Advanced that it now has plans to roll it out across its GP and community sites – more than 50 sites in total. This next stage of the deployment will also include the installation of Utimaco SafeGuard.

“For healthcare organisations like Great Yarmouth and Waveney NHS Primary Care Trust, it’s essential that their networks are fully defended against any potential risk,” said Stuart Wright, senior network access consultant at Foursys. “For these high risk projects, the customer needs to be confident that they’re partnering with a company that is not only knowledgeable, but that will also take every precaution to minimise the risk.”

Related topics:  Internet and Web security   Mobile and Wireless Security   Network Security 


print versionPrint version | email this to a friendEmail to a friend | related articlesRelated articles


Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.


Other Security news and resources


Security News Suppliers Directory Jobs forum Classifieds Knowledge base White papers Research library Security books Special reports Security interviews Security companies Security events Security links Security market

Product channels

Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Other Security Products

IT Security white papers and research library

Access Control  Authentication  Data Management  Data Security  Digital Signatures  Email Security  Identity Management  Internet Security  Intrusion Prevention  Network Security  Remote access security  Security Management  Security Policies  Security Software  Security Threats  Virus Detection Software  Virus Protection  VPN  Vulnerability Assessment  Wireless Security 

Security books, guides, standards and toolkits

RFID and Smart Cards books, guides and reference documents  Biometric books, guides and reference documents  CCTV books, guides and reference documents  Intruder alarms and intrusion detection systems books, guides and reference documents  Monitoring and surveillance books, guides and reference documents  IT Governance, ISO 27001 ISO 17799 and BS 7799 toolkits  Fire, Health & Safety books, guides and reference documents

Security Resources
Directory GET LISTED! Jobs forum Classifieds Knowledge base White papers Research library Security books Security videos Special reports Security companies Security events Security links Security market Company news

Security Products
Access Control Biometrics CCTV Intruder Alarms IT Security Manned Guarding Perimeter Protection Physical Security Remote Monitoring Security Services Fire, Health & Safety Security products

Security Markets
Bank and financial services security Corporate and enterprise security Education and school security Entertainment and events security Homeland and Government security Hospital and healthcare security Infrastructure and utilities security Manufacturing and industrial security Public sector security Residential and home security Retail security Small business security Sports and recreational security Transport and logistics security


Ensure that you conduct an effective information security risk assessment that is in line with ISO 27001 by purchasing vsRisk™ Risk Assessment Tool

Need a
Security reference book?
Find it on Amazon
Security books







advertise
sumbit an article
copyright
terms & conditions
privacy policy


CMS and Web design by www.Areza.com

Article search

Directory search


add your company
Google

ISO 18028 (Network Security Management)
Home | About | Contact | Submit article | Advertise | Newsletter | RSS | Search