通过自动化测试确保企业网络具有弹性和合规性

Ensure Resilient andCompliant EnterpriseNetworks withAutomated Testing Ensure Resilient and Compliant EnterpriseNetworks with Automated Testing Ensuring operational network resilience is crucial formitigating risks to enterprises and the global economy.Given the world's reliance on digital networks,enterprises and consumers expect always-on, reliable,and secure digital services as a baseline requirement.In response, governments are creating regulations thatmandate and monitor resilience through vulnerabilityassessments and testing. Even the most resilient enterprise networks can besurprisingly vulnerable. A single weak link, whenexploited, can jeopardize critical commercialservices and sensitive data, and such failure canquickly become headline news. Every industry hasexperienced this reality with outages and security anddata breaches occurring at banks, governments, andlarge enterprises, impacting millions of customers anddriving major revenue losses. A major bank executive participating in a Spirent-ledforum reported their top-level focuses as runningthe business with zero downtime, maintainingcontinuity via ongoing infrastructure maintenance,and continually changing the business environmentto accommodate new technologies without riskingservice interruptions. While cyberattacks are always top of mind, they arenot the only cause for concern. IT supply chains havebecome increasingly complex, with third partiesmaking frequent updates to networks, solutions,and offerings. Software and configuration bugs canhave wide-ranging ramifications, as seen in the July2024CrowdStrike outage, where a software updateerror crippled 8.5 million Microsoft Windows systemsglobally. For days, airlines, hospitals, financial services,and media broadcasts worldwide were impacted.Parametrixestimated the financial fallout at $5.4billion for the Fortune 500 (excluding Microsoft)and $10 billion globally. Nearly 17,000 flights werecancelled over 72 hours. The healthcare and bankingsectors had estimated losses of $1.94 billion and $1.15billion, respectively, as important services remainedunavailable. Beyond financial losses, the incident alsounderscored the significant reputational damage anderosion of consumer confidence that can result fromsuch failures. To achieve operational resilience, enterprises areprioritizing continuous, automated testing across laband live networks while ensuring software updates aretested before deployment into production. The goalis to ensure networks are resilient to security threats,peak traffic impacts, and rainy-day conditions, andare able to recover rapidly when failure events occur. This white paper addresses enterprise networkresiliency concerns and challenges, highlighting theimportance of resiliency testing. It provides a visionand a plan for modernizing and automating networktesting to achieve operational resiliency, as well ascase study results. WHITE PAPER Enterprise network complexity poses new concerns As enterprises pursue digital transformation initiativesand networks become more distributed with workloadsand storage dispersed across premises, remote datacenters, and multiple clouds, operational networkresilience becomes a moving target. These newarchitectures, the evolving threat landscape, and theICT complexity and rate of change are all outsizedstressors for enterprise networks, creating fragility. is further amplified when integrating networktransformations and new technologies into an alreadycomplex environment, where any disruption can havesignificant operational and financial implications. More than half of respondents in a survey byEnterprise Strategy Group have experienced downtimeof public cloud infrastructure (IaaS/PaaS) resourcescaused by a misconfiguration, outage, or other non-attack event. Modern enterprise network teamsexpress the following major concerns: Networks are incorporating complex supply chainsthat depend on third parties for public cloud, SASE(Secure Access Service Edge), CDNs (Content DeliveryNetworks), and telco connectivity. Third-partydependencies, growing threat sophistication, and thelack of a defined perimeter reduce visibility and controland make the network harder to defend. Insteadof trusted users and applications within a confinednetwork, cybersecurity must now, by default, assumezero trust and verify all users and devices that seekaccess to the network. •Difficulty integrating consistent security solutionsacross multiple cloud providers•Data breaches•Insufficient visibility into network traffic and threats•Compliance and regulatory challenges•Inability to keep up with upgrades across multipleclouds•Vulnerabilities in shared infrastructure andvirtualization layers•Lack of visibility across the environment Importantly, the complexity and frequency of changescontinuously deployed into data centers, branch sites,and hosted sites magnify the opportunity for errorsand poses an increased risk to network resilience.As networks contend with supply