How do you protect your enterprise infrastructure?

Hi flux, welcome! There's no foolproof plan to protect entire infra. The best thing that one could do is to start from beginning when u setup your systems.

Begin with hardening your OS and network devices. Apply stringent controls and test it out often. Adopt a Deny all for firewall rules.

Last but not least is perform regular VA and PT to ensure your systems r free of vulnerabilities. Patch mgmt is one weak areas that many companies r facing.

Good to implement SIEM too for traceability and logging capability. All else fails but u have ur logs which can do forensic.

Hi guys,

Relatively new here, looking through the forums and found great advice and information in regards to cyber security.

To introduced, myself i am a Pen tester, testing vulnerabilities of companies infrastructure and employee's SOP by using social engineering tools, phishing to extract as much information i can from Employee's.

Was hoping to create this thread to for us to gather and share about our knowledge on protecting our enterprise infrastructure.

As all you seniors here should be aware, with the latest AV, or Firewall in place, "Hackers"?˜will still find a way to enter your infrastructure. ?˜So what else can you do to protect your infrastructure ?

As Cyber World is growing at a very fast pace, but cyber security isn't catching up, what are your views and SOP to protect your entire infrastructure.

P.S: Try not to leaked any company names or infrastructure set-up. Can share your views in General.

Flux.