IP Network Security

“With the technology of Juniper Networks and the knowhow of Cypress Consulting we now have a reliable, high-performance network, operational simplicity with central management and control, and a clear growth path which gives us full confidence that wherever the business takes us, our network will follow.”


For our customer, which specializes in advanced network and cybersecurity solutions, helping organizations protect their critical network infrastructure from new and advanced threats. Our customer  provides a range of managed services, professional services, and software development solutions.

Business Challenge

Since no two organizations are alike, our customer found itself having to build custom solutions for clients. This was taxing, and the company wanted to find a way to standardize processes and automate solutions to reduce time and effort while giving customers better than a one-size-fits-all solution.

Technology Solution

To help its customers thwart malware and advanced threats, our customer leverages Juniper’s high-performance, scalable, and intelligent security solutions, including Juniper Networks® Spotlight Secure, vSRX Services Gateway, SRX Series Services Gateways, and Junos® Space Security Director. With Juniper’s advanced security solutions and the skilled people of Cypress Consulting, our customer  can provide their customers with rapid, coordinated protection against advanced threats from its network operations centers.

Business Results

Juniper’s powerful, open, scalable, and intelligent security solution and the excellent services of Cypress Consulting has given our customer the foundation it needs to provide an agile response to the rising volume and sophistication of cyberthreats.

One big reason for the meteoric rise of security as a design criteria is certainly the accelerating pace and impact of security incidents across the globe. Where we used to see a major breach or new threat only a few times a year, these days it seems like there is some unfortunate news hitting the wire every couple of weeks. Worse than that, the magnitude of the impact is increasing.

A few years ago, a company could hope to emerge from an event having only lost some productivity. Today? An event that grabs headlines can shave billions of dollars in market capitalization from public companies. In the recent Equifax breach, the company saw a 30% drop in stock price resulting in a more than $4B shift in market cap.

For private companies, security incidents can spell the end of the business. In 2016, the US National Cyber Security Alliance found that 60 percent of small companies are out of business entirely within six months of a security breach incident.

Board-level attention

When the stakes are this high, it’s no surprise that security is now a board-level discussion at companies across all sectors. Put simply, those at the helm cannot afford to delegate their security postures while maintaining zero visibility.

This means that IT leaders are increasingly finding themselves in the crosshairs, as the most senior executives inspect some of the most vulnerable parts of the business. It’s not enough to have a plan. The efficacy of that plan has to be demonstrated frequently through internal reviews and third-party audits.

All hands on deck

The result of this added scrutiny is that security is now an all-hands-on-deck issue. If you are not part of the solution, you are part of the problem. And that means that it’s not just the CISO or the security team that has to deliver.

Recent research is clear on this point: security is a networking problem, too. The lines between security and networking have been narrowing for years, but this study suggests that they have actually merged to some extent. While the security team is not responsible for connectivity, the networking team certainly carries some of the security burden.

Security as a top-tier networking consideration has two major implications. First, the network has to play an active role in surfacing threat intelligence. This puts a greater emphasis on streaming telemetry and integration with threat monitoring solutions. Second, the network must play an integral role in the isolation of threats, using dynamic policy enforcement to quarantine bad actors.

The bottom line

Networking is no longer just an exercise in increasing capacity. The network has so much more to give than merely connecting devices and users. There is a rich set of information that can be pulled from the network to better identify what is happening within the infrastructure. These insights simply must be part of an expanded security umbrella. And the network makes for a logical enforcement point as bad actors are identified and quarantined. The dynamic enforcement of policy in response to real-time threats is an absolute must for enterprise IT.

Of course, the threats to IT are only getting worse. As IoT and cloud continue to evolve, it means that the nature and source of threats will evolve, leaving enterprises that are unprepared particularly vulnerable. Assuming that security is going to be handled by someone else simply isn’t good enough—everyone bears responsibility.

Security management in today’s enterprise is like navigating the open ocean. You’re on an extended journey and any given day can bring smooth sailing, stormy seas or a rogue wave big enough to sink your entire network. Managing network security requires vigilance and a strong infrastructure. It also requires a sound security strategy.

For one, the advent of SIEM (security information and event management) solutions has relieved security teams from the burdensome task of manually combing through massive amounts of security logs. It also relieves them of the duty of aggregating event data and deriving meaning from it – basically, performing security analysis. And, thanks to offerings from a number of technology vendors that heavy lifting can now be automated.

Another important aspect of security management for distributed networks is being able to centrally view and manage policy across multiple firewall deployments. Manually configuring and updating policies for each firewall in each location isn’t feasible. The best solution? Utilize a centralized security management tool.

With the right network security tools in place, organizations can better anticipate security concerns and keep moving full steam ahead, safely and securely.