CyberSecurity by WirelessCar
Secure by design is the core principle in our architecture and stands true to its statement - "Design and build for secure solutions from the start". Our Cybersecurity Solution exists to address the unique characteristics of the business, and takes a stand against any potential threats.
We believe in 360° Security Efficiency, we design it through optimizing the golden triangle - People, Process, Technology; and achieve the three pillars of Information Security - Confidentiality, Integrity, and Availability. To enable this, we use International Standards such as ISO 27001, VDA-ISA, UN R155, and NIST 800-53 to minimize the weak points that exist for threats to occur or spread. Even though the sum of the solution constantly keeps evolving based on the current threat landscape; We outline it through the following:
TARA
Threat Analysis and Risk Assessment modelling is an integral component in designing a secure system. Our Security Architecture is based on such assessments, after which implementation demands are aligned to fulfil and achieve desired security goals to ensure that all assets and information are protected. Once defined at the initial phase of design, it is continuously reviewed and updated to keep security posture aligned with all the stakeholders.
DevSecOps
Applications built based on DevOps have stormed ahead in terms of scale and functionality. However, with the current threat landscape, Hackers are always targeting companies to deploy malware and exploits; and DevSecOps adds the efficiency for continuous integration with enhanced automation throughout the application development cycle by making security an equal partner alongside development and operations.
Defense in Depth
In order to combat the ever increasing cyber threats and an ever changing cybersecurity landscape - a series of security controls are thoughtfully layered to protect the confidentiality, integrity and availability of data. A multi-layered approach with redundancies are setup to ensure the availability of the system which handles multiple attack vectors; i.e., if one mechanism fails or gets compromised, another steps up immediately to mitigate the attack.
Attack Surface Management
The SaaS and Cloud Assets form a major chunk of the attack surface, that are accessible from the internet - which process and store your data. We minimize the attack surface by proactively managing the SBOM, i.e., life cycle of all libraries, components, which also includes identifying vulnerabilities, potential exposures; as well as implementing an automated life cycle control. As with everything in cybersecurity - The smaller the target, the harder it is to hit!
Data Privacy
The Data Landscape surrounding - not just private and confidential data, but also user data has become increasingly complex. With the growing needs on inter-dependencies of critical applications and infrastructure, we carefully consider the requirements of data collection, storage, archival and deletion. Beyond the identity and access management, we also built robust data privacy focused processes taking into account some of the high-profile regulations to align with the shifting regulatory landscape.
Continual Improvement
Within Cybersecurity, it takes time for remediated actions to be gain visibility, in both the internal process as well as the security metrics and measurements. However, we at WirelessCar incorporate incremental improvements which lead to long term value while improving the process to provide better visibility with a measurable impact.
Security Hygiene
A dedicated Security Architect, who secures high cybersecurity in every step of the delivery, from development, to operations, as well as in response to new changes and threats, is assigned to every customer delivery. Then a three pronged approach is taken to ensure that the security hygiene necessary for the services being built and hosted.
Application Security
The current generation applications require frequent code changes as new services and functions are built. While the time-tested approach of SDLC is used - it is modified to accommodate the accelerated application life cycle environment; The changing conditions of modern security threats are considered by analyzing every component and determining what security measures are appropriate for them.
Cloud Security - AWS Well Architected Framework
The move to public cloud computing by design means that the static security approach is not sufficient owing to the erratic traffic patterns. To overcome that, the Well-Architected Framework has been developed to help cloud architects build secure, high-performing, resilient, and efficient infrastructure for their applications. Based on five pillars — operational excellence, security, reliability, performance efficiency, and cost optimization — the Framework provides a consistent approach for customers and partners to evaluate architectures and implement designs that will scale over time.
Confidentiality
The threats to Data are never ending and continue to multiply with every data breach; Encryption is one of the fundamental aspects of cybersecurity architecture, which makes the intercepted data difficult to read. At WirelessCar, encryption is used both in transit and at rest to ensure the highest possible level of data safety and protection from malicious actors.
NIST 800-53
Security controls and assessment procedures for federal information systems and organizations. NIST Special Publication 800-53 covers the steps in the Risk Management Framework that address security control selection for federal information systems in accordance with the security requirements in Federal Information Processing Standard (FIPS) 200. We put immense focus on ensuring that security controls needed are evaluated and in place for related services.
