I'm curious about how everyone here is managing browser security in their organizations. We've got solid endpoint protection, firewalls, and email filters in place, but I feel like the browser is a huge blind spot that often gets overlooked. Users frequently switch between personal and work accounts, which gives me no visibility into what's happening while they're browsing. Am I overreacting, or should we really have a dedicated strategy for browser security?
5 Answers
Look into using a Cloud Access Security Broker (CASB) or implementing a deep packet inspection tool. Tools like Palo Alto can really enhance your visibility and control over web traffic, which seems to be what you're lacking.
We’ve managed browser security by enforcing strict GPOs for Edge and Chrome. We block personal account logins and allow only verified users to sign in through Edge, which works great with our SSO setup.
We've restricted the use of personal accounts entirely in our organization. It gives us more control and better visibility. Inspecting web traffic is also a crucial part of our strategy; it helps catch issues before they become problems.
It’s a valid concern! I discussed this with our CISO, and he was fine with relying on MFA. Not sure that's the best approach though. Seems a bit risky to just 'hope' for the best.
You're definitely on the right track; browser security shouldn't be ignored. For us, we've enforced either Edge for Business or Chrome Enterprise based on our setup and pushed relevant policies to users.
Related Questions
Can't Load PhpMyadmin On After Server Update
Redirect www to non-www in Apache Conf
How To Check If Your SSL Cert Is SHA 1
Windows TrackPad Gestures