BAR-organisatie
Government Service Organization Chooses Netop for Secure Remote Support
THE CHALLENGE
Organizations handling sensitive information, such as local government agencies, are frequent targets of cyberattacks. The ease of internet access and file transfer poses significant risks. Facing potential fines for inadequate data protection, the BAR-organisatie is taking a proactive approach to controlling access to confidential data.
Previously, the BAR-organisatie relied on a variety of remote control tools for external vendor access, making it challenging to track who accessed which devices and what actions they performed. They recognized the need to consolidate to a single tool that would provide granular control over device access and remote actions.
THE RISKS
The past year has seen numerous cyberattacks targeting local governments, with many data breaches reported in accordance with the Netherlands’ new Data Protection Act. The upcoming General Data Protection Regulation (GDPR), applicable to all countries and organizations serving EU customers, further underscores the importance of data security.
Henry, of the BAR-organisatie, noted the frequency of ransomware attacks, recounting an incident where, despite only one successful penetration, it still required half a day of work from two staff members to restore data and systems.
Beyond implementing multi-factor authentication, the BAR-organisatie sought to log all remote control sessions. Logging and session recording are essential for incident response in the event of a data breach or during an audit.
THE SOLUTION
Netop’s browser-based support console enable the BAR-organisatie to manage external vendor server access for maintenance and troubleshooting without requiring Netop software installation on the vendors’ end. Vendors can log in from anywhere via the Netop Portal, authenticating with native or existing multi-factor authentication methods. For file transfers, vendors can install Netop Connect locally, allowing files to be scanned by antivirus software before server installation. Firewalls can now be configured to block all other remote control tools, permitting only Netop traffic through its proprietary port.
Netop provides the BAR-organisatie with logging and recording capabilities for all remote control sessions. Leveraging the on-premises version of Netop’s connection service, system engineers can utilize the full Netop Guest application for comprehensive remote control, both internally and externally. All access is secured with multi-factor authentication, customizable user rights controls, logging, and session recording to ensure compliance with data protection regulations. Naturally, Netop utilizes robust data encryption.
Netop enables centralized management of user permissions and roles. It integrates with the BAR-organisatie’s Active Directory for initial authentication and then proceeds with their existing multi-factor authentication.
WHY THEY CHOOSE NETOP
Henry’s prior positive experience with Netop, coupled with the user-friendly new portal, which seemed ideally suited for the BAR-organisatie’s external vendors, were key factors in their decision. A proof-of-concept installation within their environment allowed thorough testing and validation of the solution’s capabilities. Ultimately, Netop’s ability to provide granular control over user actions, locations, and timings was the deciding factor. Other less secure tools posed risks related to unauthorized file transfers outside the organization.
Henry explained, “With Netop, we can now block all other remote control tools at our firewall. Netop allows us to granularly configure permissions, enabling authorized users to perform specific remote activities on designated servers, all while logging and, if needed, recording these sessions.”