Publicado el por Deja un comentario

Amazon Connect broadens global telephony coverage

Amazon Connect announces the expansion of access to industry-leading inbound number availability across 158 countries, national outbound numbers in 72 countries, and global international dialing capabilities from any supported AWS commercial region. This expansion increases telephony coverage by an average of 125% across AWS regions. Organizations can now focus on selecting the ideal location for their customer experience operations based on business considerations such as agent availability, language fluency and regulatory needs without being constrained by telecommunications infrastructure. Agents and customers benefit from the reliability, quality, and cost-effectiveness enabled by the AWS global network and Amazon Connect’s direct connections to the 40+ tier-1 carriers closest to your customers.

With this launch, Amazon Connect reimagines the delivery of voice calls. Traditional telephony networks often introduce quality degradation through multiple interconnection points, variable routing paths, and aging infrastructure. By leveraging the AWS global network backbone – the same high-performance, low-latency private network that powers AWS, call paths are optimized and routed directly to the carrier closest to your customer. This simplified routing enables consistently clear and natural conversations for every call.

Access expanded telephony coverage for Amazon Connect in all AWS Regions where Amazon Connect is available, except the AWS GovCloud (US) Regions and Africa (Cape Town). For information about our expanded telephony coverage, see Set Up Contact Center Phone Numbers for your Amazon Connect Instance in the Amazon Connect Administrator Guide.
 

 

​Amazon Connect announces the expansion of access to industry-leading inbound number availability across 158 countries, national outbound numbers in 72 countries, and global international dialing capabilities from any supported AWS commercial region. This expansion increases telephony coverage by an average of 125% across AWS regions. Organizations can now focus on selecting the ideal location for their customer experience operations based on business considerations such as agent availability, language fluency and regulatory needs without being constrained by telecommunications infrastructure. Agents and customers benefit from the reliability, quality, and cost-effectiveness enabled by the AWS global network and Amazon Connect’s direct connections to the 40+ tier-1 carriers closest to your customers. With this launch, Amazon Connect reimagines the delivery of voice calls. Traditional telephony networks often introduce quality degradation through multiple interconnection points, variable routing paths, and aging infrastructure. By leveraging the AWS global network backbone – the same high-performance, low-latency private network that powers AWS, call paths are optimized and routed directly to the carrier closest to your customer. This simplified routing enables consistently clear and natural conversations for every call. Access expanded telephony coverage for Amazon Connect in all AWS Regions where Amazon Connect is available, except the AWS GovCloud (US) Regions and Africa (Cape Town). For information about our expanded telephony coverage, see Set Up Contact Center Phone Numbers for your Amazon Connect Instance in the Amazon Connect Administrator Guide.    

Publicado el por Deja un comentario

AWS WAF Targeted Bot Control is now available in the AWS GovCloud (US) Regions

Starting today, you can use AWS WAF Targeted Bot Control in the AWS GovCloud (US) Regions. AWS WAF Targeted Bot Control protects applications against sophisticated bots targeting critical enterprise applications like e-commerce and financial services websites.

AWS WAF is a web application firewall that helps you protect your web application resources against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. You can protect the following resource types: Amazon CloudFront distributions, Amazon API Gateway REST APIs, Application Load Balancer, AWS AppSync GraphQL API, AWS App Runner, AWS Verified Access, and Amazon Cognito user pools.

To see the full list of regions where AWS WAF is currently available, visit the AWS Region Table. For more information about the service, visit the AWS WAF page. AWS WAF pricing may vary between regions. For more information about pricing, visit the AWS WAF Pricing page.
 

 

​Starting today, you can use AWS WAF Targeted Bot Control in the AWS GovCloud (US) Regions. AWS WAF Targeted Bot Control protects applications against sophisticated bots targeting critical enterprise applications like e-commerce and financial services websites. AWS WAF is a web application firewall that helps you protect your web application resources against common web exploits and bots that can affect availability, compromise security, or consume excessive resources. You can protect the following resource types: Amazon CloudFront distributions, Amazon API Gateway REST APIs, Application Load Balancer, AWS AppSync GraphQL API, AWS App Runner, AWS Verified Access, and Amazon Cognito user pools. To see the full list of regions where AWS WAF is currently available, visit the AWS Region Table. For more information about the service, visit the AWS WAF page. AWS WAF pricing may vary between regions. For more information about pricing, visit the AWS WAF Pricing page.    

Publicado el por Deja un comentario

Amazon Cognito introduces Managed Login to support rich branding for end user journeys in the AWS GovCloud (US) Regions

Amazon Cognito introduces Managed Login in the AWS GovCloud (US) Regions, a fully-managed, hosted sign-in and sign-up experience that customers can personalize to align with their company or application branding. Amazon Cognito provides millions of users with secure, scalable, and customizable sign-up and sign-in experiences. With Managed Login, Cognito customers can now use its no-code visual editor to customize the look and feel of the user journey from signup and login to password recovery and multi-factor authentication.

Managed Login helps customers offload the undifferentiated heavy lifting of designing and maintaining custom implementations such as passwordless authentication and localization. For example, Managed Login offers pre-built integrations for passwordless login, including sign-in with passkeys, email, or text message. This provides customers the flexibility to implement low-friction and secure authentication methods without the need to author custom code. With Managed Login, customers now design and manage their end-user sign-up and sign-in experience through the AWS Management Console. Additionally, Cognito has also revamped its getting started experience with application-specific (e.g., for web applications) guidance for customers to swiftly configure their user pools. Together with Managed Login and a simplified getting started experience, customers can now get their applications to end users faster than ever before with Amazon Cognito.

Managed Login is offered as part of the Cognito Essentials tier and can be used in all AWS Regions where Amazon Cognito is available, including the AWS GovCloud (US) Regions. To get started, refer to:

 

​Amazon Cognito introduces Managed Login in the AWS GovCloud (US) Regions, a fully-managed, hosted sign-in and sign-up experience that customers can personalize to align with their company or application branding. Amazon Cognito provides millions of users with secure, scalable, and customizable sign-up and sign-in experiences. With Managed Login, Cognito customers can now use its no-code visual editor to customize the look and feel of the user journey from signup and login to password recovery and multi-factor authentication. Managed Login helps customers offload the undifferentiated heavy lifting of designing and maintaining custom implementations such as passwordless authentication and localization. For example, Managed Login offers pre-built integrations for passwordless login, including sign-in with passkeys, email, or text message. This provides customers the flexibility to implement low-friction and secure authentication methods without the need to author custom code. With Managed Login, customers now design and manage their end-user sign-up and sign-in experience through the AWS Management Console. Additionally, Cognito has also revamped its getting started experience with application-specific (e.g., for web applications) guidance for customers to swiftly configure their user pools. Together with Managed Login and a simplified getting started experience, customers can now get their applications to end users faster than ever before with Amazon Cognito. Managed Login is offered as part of the Cognito Essentials tier and can be used in all AWS Regions where Amazon Cognito is available, including the AWS GovCloud (US) Regions. To get started, refer to:

Pricing Detail Page
AWS News Blog
Developer Guide  

Publicado el por Deja un comentario

Amazon Cognito is now available in the AWS GovCloud (US East) Region

Amazon Cognito is now available in the AWS GovCloud (US-East) Region. This launch introduces all Amazon Cognito features and tiers: Essentials, Lite, and Plus, allowing customers to use comprehensive and flexible authentication and access control features to implement secure, scalable, and customized sign-up and sign-in experiences for their application within minutes. Cognito allows customers to scale authentication to millions of users and supports sign-in with social identity providers such as Apple, Facebook, Google, and Amazon, and enterprise identity providers via standards such as SAML 2.0 and OpenID Connect.

For a full list of regions where Amazon Cognito is available, refer to the AWS Region Table. To learn more about Amazon Cognito, refer to:

 

​Amazon Cognito is now available in the AWS GovCloud (US-East) Region. This launch introduces all Amazon Cognito features and tiers: Essentials, Lite, and Plus, allowing customers to use comprehensive and flexible authentication and access control features to implement secure, scalable, and customized sign-up and sign-in experiences for their application within minutes. Cognito allows customers to scale authentication to millions of users and supports sign-in with social identity providers such as Apple, Facebook, Google, and Amazon, and enterprise identity providers via standards such as SAML 2.0 and OpenID Connect. For a full list of regions where Amazon Cognito is available, refer to the AWS Region Table. To learn more about Amazon Cognito, refer to:

Developer Guide
Product Detail Page
Pricing Detail Page  

Publicado el por Deja un comentario

Announcing new feature tiers: Essentials and Plus for Amazon Cognito in AWS GovCloud (US) Regions

Amazon Cognito launches new user pool feature tiers, Essentials and Plus, in the AWS GovCloud (US) Regions. The Essentials tier offers comprehensive and flexible user authentication and access control features, allowing customers to implement secure, scalable, and customized sign-up and sign-in experiences for their application within minutes. It supports password-based log-in, multi-factor authentication (email, SMS, TOTP), and log-in with social identity providers, along with recently announced Managed Login and passwordless log-in (passkeys, email, SMS) features. Essentials also supports customizing access tokens and disallowing password reuse. The Plus tier is geared toward customers with elevated security needs for their applications by offering threat protection capabilities against suspicious log-ins. Plus includes all Essentials features and additionally supports risk-based adaptive authentication, compromised credentials detection, and exporting user authentication event logs to analyze threat signals.

Essentials will be the default tier for new users pools created by customers. Customers also have the flexibility to switch between all available tiers anytime based on their application needs. For existing user pools, customers can enable the new tiers or continue using their current user pool configurations without making any changes.

The Essentials and Plus tiers are available at new pricing. Essentials and Plus are available in all AWS Regions where Amazon Cognito is available, including the AWS GovCloud (US) Regions.

To learn more, refer to:

 

​Amazon Cognito launches new user pool feature tiers, Essentials and Plus, in the AWS GovCloud (US) Regions. The Essentials tier offers comprehensive and flexible user authentication and access control features, allowing customers to implement secure, scalable, and customized sign-up and sign-in experiences for their application within minutes. It supports password-based log-in, multi-factor authentication (email, SMS, TOTP), and log-in with social identity providers, along with recently announced Managed Login and passwordless log-in (passkeys, email, SMS) features. Essentials also supports customizing access tokens and disallowing password reuse. The Plus tier is geared toward customers with elevated security needs for their applications by offering threat protection capabilities against suspicious log-ins. Plus includes all Essentials features and additionally supports risk-based adaptive authentication, compromised credentials detection, and exporting user authentication event logs to analyze threat signals. Essentials will be the default tier for new users pools created by customers. Customers also have the flexibility to switch between all available tiers anytime based on their application needs. For existing user pools, customers can enable the new tiers or continue using their current user pool configurations without making any changes. The Essentials and Plus tiers are available at new pricing. Essentials and Plus are available in all AWS Regions where Amazon Cognito is available, including the AWS GovCloud (US) Regions. To learn more, refer to:

AWS News Blog
Documentation  

Publicado el por Deja un comentario

Amazon SageMaker Inference now supports rolling update for inference component endpoints

Amazon SageMaker Inference now supports rolling updates for inference component (IC) endpoints. This allows customers to update running IC endpoints without traffic interruption while using minimal extra instances, rather than requiring doubled instances as in the past. SageMaker Inference makes it easy to deploy ML models, including foundation models (FMs). As a capability of SageMaker Inference, IC enables customers to deploy multiple FMs on the same endpoint and control accelerator allocation for each model.

Now, rolling updates enables customers to update ICs within an endpoint batch by batch, instead of all at once like the previous blue/green update method. Blue/green updates required provisioning a new fleet of ICs with the updated model before shifting traffic from the old fleet to the new one, effectively doubling the number of required instances. With rolling updates, new ICs are created in smaller batches, significantly reducing the number of additional instances needed during updates. This helps customers minimize costs from extra capacity and maintain smaller buffer requirements in their capacity reservations.

Rolling update for IC is available in all regions where IC is supported: Asia Pacific (Tokyo, Seoul, Mumbai, Singapore, Sydney, Jakarta), Canada (Central), Europe (Frankfurt, Stockholm, Ireland, London), Middle East (UAE), South America (Sao Paulo), US East (N. Virginia, Ohio), and US West (N. California, Oregon). To learn more, see the documentation.

 

​Amazon SageMaker Inference now supports rolling updates for inference component (IC) endpoints. This allows customers to update running IC endpoints without traffic interruption while using minimal extra instances, rather than requiring doubled instances as in the past. SageMaker Inference makes it easy to deploy ML models, including foundation models (FMs). As a capability of SageMaker Inference, IC enables customers to deploy multiple FMs on the same endpoint and control accelerator allocation for each model. Now, rolling updates enables customers to update ICs within an endpoint batch by batch, instead of all at once like the previous blue/green update method. Blue/green updates required provisioning a new fleet of ICs with the updated model before shifting traffic from the old fleet to the new one, effectively doubling the number of required instances. With rolling updates, new ICs are created in smaller batches, significantly reducing the number of additional instances needed during updates. This helps customers minimize costs from extra capacity and maintain smaller buffer requirements in their capacity reservations. Rolling update for IC is available in all regions where IC is supported: Asia Pacific (Tokyo, Seoul, Mumbai, Singapore, Sydney, Jakarta), Canada (Central), Europe (Frankfurt, Stockholm, Ireland, London), Middle East (UAE), South America (Sao Paulo), US East (N. Virginia, Ohio), and US West (N. California, Oregon). To learn more, see the documentation.  

Publicado el por Deja un comentario

Amazon EventBridge expands enhanced event source discovery to AWS GovCloud (US) Regions

Amazon EventBridge enhanced event source discovery, which displays the source and detail type of all AWS service events during rule creation in the AWS console, is now available in the AWS GovCloud (US) Regions. This makes it easier for customers to discover and utilize the full range of AWS service events when building event-driven architectures. Additionally, the EventBridge documentation now includes an automatically updated list of all AWS service events, providing a single source of truth and ensuring developers always have access to accurate, reliable information.

Amazon EventBridge Event Bus is a serverless event router that enables you to create highly scalable event-driven applications by routing events between your own applications, third-party SaaS applications, and other AWS services. With this update, developers can quickly search and filter through all available AWS service events, including event types, within the EventBridge console, when configuring event patterns in the sandbox and rules. This enables customers to create event-driven integrations more efficiently while reducing the risk of misconfiguration.

This feature is now available in the AWS GovCloud (US-East) and AWS GovCloud (US-West) Regions. You can get started by navigating to the EventBridge console, where you can access the Sandbox or Create Rule page to see the list of all events when building the event pattern. You can also see the updated list of AWS service events in the documentation here.

 

​Amazon EventBridge enhanced event source discovery, which displays the source and detail type of all AWS service events during rule creation in the AWS console, is now available in the AWS GovCloud (US) Regions. This makes it easier for customers to discover and utilize the full range of AWS service events when building event-driven architectures. Additionally, the EventBridge documentation now includes an automatically updated list of all AWS service events, providing a single source of truth and ensuring developers always have access to accurate, reliable information. Amazon EventBridge Event Bus is a serverless event router that enables you to create highly scalable event-driven applications by routing events between your own applications, third-party SaaS applications, and other AWS services. With this update, developers can quickly search and filter through all available AWS service events, including event types, within the EventBridge console, when configuring event patterns in the sandbox and rules. This enables customers to create event-driven integrations more efficiently while reducing the risk of misconfiguration. This feature is now available in the AWS GovCloud (US-East) and AWS GovCloud (US-West) Regions. You can get started by navigating to the EventBridge console, where you can access the Sandbox or Create Rule page to see the list of all events when building the event pattern. You can also see the updated list of AWS service events in the documentation here.  

Publicado el por Deja un comentario

Amazon Cognito now supports passwordless authentication for low-friction and secure logins in the AWS GovCloud (US) Regions

Today, Amazon Cognito announced support for passwordless authentication for low-friction and secure logins in the AWS GovCloud (US) Regions. Amazon Cognito now allows you to secure user access to your applications with passwordless authentication, including sign-in with passkeys, email, and text message. Passkeys are based on FIDO standards and use public key cryptography, which enables strong, phishing-resistant authentication. With passwordless authentication, you can reduce the friction associated with traditional password-based authentication and thus simplify the user log-in experience for their applications. For example, if your users choose to use passkeys to log in, they can do so using a built-in authenticator, such as Touch ID on Apple MacBooks and Windows Hello facial recognition on PCs.

Amazon Cognito provides millions of users with secure, scalable, and customizable sign-up and sign-in experiences within minutes. With this launch, AWS is now extending the support for passwordless authentication to the applications you build. This enables your end-users to log in to your applications with a low-friction and secure approach.

Passwordless authentication is offered as part of the Cognito Essentials tier and can be used in all AWS Regions where Amazon Cognito is available, including AWS GovCloud (US). To get started, see the following resources:

 

​Today, Amazon Cognito announced support for passwordless authentication for low-friction and secure logins in the AWS GovCloud (US) Regions. Amazon Cognito now allows you to secure user access to your applications with passwordless authentication, including sign-in with passkeys, email, and text message. Passkeys are based on FIDO standards and use public key cryptography, which enables strong, phishing-resistant authentication. With passwordless authentication, you can reduce the friction associated with traditional password-based authentication and thus simplify the user log-in experience for their applications. For example, if your users choose to use passkeys to log in, they can do so using a built-in authenticator, such as Touch ID on Apple MacBooks and Windows Hello facial recognition on PCs. Amazon Cognito provides millions of users with secure, scalable, and customizable sign-up and sign-in experiences within minutes. With this launch, AWS is now extending the support for passwordless authentication to the applications you build. This enables your end-users to log in to your applications with a low-friction and secure approach. Passwordless authentication is offered as part of the Cognito Essentials tier and can be used in all AWS Regions where Amazon Cognito is available, including AWS GovCloud (US). To get started, see the following resources:

Pricing Detail Page
AWS News Blog
Developer Guide  

Publicado el por Deja un comentario

Amazon Bedrock now supports multi-agent collaboration

Today, AWS announces the general availability (GA) of multi-agent collaboration for Amazon Bedrock, allowing developers to create networks of specialized agents that communicate and coordinate under the guidance of a supervisor agent. This new capability allows you to tackle more intricate, multi-step workflows and scale your AI-driven applications more effectively.

Amazon Bedrock multi-agent collaboration GA introduces key enhancements designed to improve scalability, flexibility, and operational efficiency. Inline Agents allow you to dynamically adjust agent roles and behaviors at runtime, making workflows more adaptable as your business needs evolve. With Payload Referencing, supervisor agents can reference linked data instead of embedding it in every request, reducing data transfer, improving response times, and lowering operational costs. Additionally, multi-agent now offers CloudFormation (CFN) and Cloud Development Kit (CDK) support so you can create reusable teams of agents as templates that can be shared across accounts within an organization.

This release also introduces agent monitoring and observability features, helping you track, monitor, and optimize agent interactions more efficiently. These features improve debugging and traceability, ensuring better visibility into agent workflows and making troubleshooting easier for developers.

Multi-agent collaboration on Amazon Bedrock is now available in all AWS Regions where Amazon Bedrock is supported. To learn more about this feature and how it can help you build more sophisticated AI applications, see the Amazon Bedrock product page or refer to the documentation for detailed information on getting started.

 

​Today, AWS announces the general availability (GA) of multi-agent collaboration for Amazon Bedrock, allowing developers to create networks of specialized agents that communicate and coordinate under the guidance of a supervisor agent. This new capability allows you to tackle more intricate, multi-step workflows and scale your AI-driven applications more effectively.
Amazon Bedrock multi-agent collaboration GA introduces key enhancements designed to improve scalability, flexibility, and operational efficiency. Inline Agents allow you to dynamically adjust agent roles and behaviors at runtime, making workflows more adaptable as your business needs evolve. With Payload Referencing, supervisor agents can reference linked data instead of embedding it in every request, reducing data transfer, improving response times, and lowering operational costs. Additionally, multi-agent now offers CloudFormation (CFN) and Cloud Development Kit (CDK) support so you can create reusable teams of agents as templates that can be shared across accounts within an organization.
This release also introduces agent monitoring and observability features, helping you track, monitor, and optimize agent interactions more efficiently. These features improve debugging and traceability, ensuring better visibility into agent workflows and making troubleshooting easier for developers.
Multi-agent collaboration on Amazon Bedrock is now available in all AWS Regions where Amazon Bedrock is supported. To learn more about this feature and how it can help you build more sophisticated AI applications, see the Amazon Bedrock product page or refer to the documentation for detailed information on getting started.  

Publicado el por Deja un comentario

Replantear la seguridad de la asistencia remota en un mundo Zero Trust

marzo 10, 2025

Replantear la seguridad de la asistencia remota en un mundo Zero Trust

Por: Talal Alqinawi, director sénior de marketing de productos de Intune.

La reciente brecha de seguridad del Tesoro de los Estados Unidos subraya una cruda realidad: los adversarios cibernéticos ya no solo buscan brechas en la seguridad de la red tradicional, sino que explotan de manera activa las herramientas en las que confían las organizaciones para las operaciones diarias. Las tecnologías de asistencia remota, esenciales para el soporte de TI y la continuidad del negocio, se han convertido en objetivos principales para el robo de credenciales, el movimiento dentro de la red y la explotación del sistema. El mensaje es claro: asegurar la asistencia remota ya no es opcional; es un requisito fundamental para mantener la resiliencia operativa.  

Un enfoque múltiple para proteger la asistencia remota con Zero Trust

Durante demasiado tiempo, la seguridad de la asistencia remota se ha asumido en lugar de diseñarse intencionalmente en su arquitectura. El aumento de las ciberamenazas sofisticadas exige un cambio fundamental en nuestro enfoque. Las organizaciones deben replantearse la seguridad de la asistencia remota a través de la lente de Zero Trust, por medio de los tres principios clave de verificación explícita, uso de privilegios mínimos y asumir la violación como guía y garantizar que cada sesión, usuario y dispositivo se verifique, cumpla y supervise antes de conceder el acceso.

Descubran cómo la implementación de Zero Trust puede fortalecer la seguridad de su asistencia remota al visitar nuestro Taller de Zero Trust, donde encontrarán una guía interactiva para integrar la seguridad en sus operaciones de TI.  

Esto requiere un enfoque estructurado con una base de:

  1. Control de identidad y acceso: garantiza que solo los usuarios y dispositivos autenticados y conformes puedan iniciar o recibir asistencia remota.
  2. Seguridad y cumplimiento de endpoints: aplicación de líneas de base de seguridad y acceso condicional en todos los dispositivos administrados.
  3. Seguridad integrada en la asistencia remota: incorporar la seguridad en la base misma de las herramientas de asistencia remota, para eliminar las brechas que los ciberatacantes pueden explotar.

Exploren el enfoque de Zero Trust de Microsoft

Control de identidad y acceso: la primera línea de defensa de la ciberseguridad

La seguridad de la identidad es la piedra angular de cualquier estrategia de asistencia remota segura. Una identidad comprometida suele ser el primer paso de un ciberataque, por lo que es fundamental garantizar que solo los usuarios y dispositivos verificados puedan iniciar o recibir sesiones de asistencia remota. Las organizaciones deben hacer cumplir lo siguiente:

  • Verificación de identidad explícita: mediante la autenticación multifactor (MFA, por sus siglas en inglés) y el acceso condicional basado en riesgos para garantizar que solo los usuarios autorizados obtengan acceso.
  • Acceso con privilegios mínimos: garantizar que la asistencia remota se otorgue solo durante el tiempo necesario y con privilegios mínimos para reducir el riesgo de explotación.
  • Evaluación de riesgos en tiempo real: evaluación continua de las solicitudes de acceso en busca de anomalías o actividades sospechosas para evitar el acceso no autorizado.

Al cambiar el perímetro de seguridad a la identidad, las organizaciones crean un entorno en el que la confianza se gana de forma dinámica, no se asume.

Cierre de brechas con la seguridad de los puntos de conexión y el cumplimiento con Microsoft Intune

Con frecuencia, los ciberatacantes explotan puntos finales (endpoints) obsoletos, mal configurados o que no cumplen con las normas para afianzarse en los entornos empresariales. Los líderes de TI y seguridad deben asegurarse de que la asistencia remota se base en una sólida base de seguridad de endpoints, donde cada dispositivo que se conecta a los recursos corporativos cumple con estrictos estándares de cumplimiento. Esto pone de manifiesto la necesidad de que las organizaciones establezcan políticas de seguridad coherentes en todos los dispositivos, asegurándose de que estén actualizadas y cumplan antes de que se les conceda el acceso remoto.

Microsoft Intune proporciona las herramientas necesarias para:

  • Aplicar políticas de cumplimiento: restrinjan la asistencia remota a dispositivos administrados, actualizados y que cumplan con las políticas.
  • Aplicar líneas de base de seguridad: estandaricen las configuraciones en todos los endpoints para minimizar las brechas de seguridad.
  • Integración con el ecosistema de seguridad de Microsoft, para conectar los flujos de trabajo de asistencia remota con Microsoft Entra, la familia de productos Microsoft Defender y otras herramientas de seguridad para la supervisión en tiempo real y la mitigación de amenazas cibernéticas.  

Más información sobre Microsoft Intune

Ayuda remota: asistencia remota segura creada para Zero Trust

A medida que las organizaciones trabajan hacia un modelo Zero Trust, la asistencia remota segura debe alinearse con los principios básicos de seguridad. Esto significa ir más allá de las medidas de seguridad reactivas e incorporar controles proactivos basados en políticas en cada sesión remota. La Ayuda remota de Microsoft Intune se diseñó con estos imperativos en mente, para brindar una solución sólida que mejora el soporte de TI y minimiza los riesgos de seguridad.

Si bien las herramientas de asistencia remota heredadas pueden carecer de controles de seguridad de nivel empresarial, Remote Help está diseñada para alinearse con los principios de Zero Trust. A diferencia de las soluciones tradicionales, la ayuda remota:

  • Se integra directo con Microsoft Entra ID, lo que mejora la seguridad donde la autenticación y los controles de acceso pueden tener lugar de forma coherente.
  • Proporciona transparencia en las sesiones: los equipos de TI pueden rastrear y monitorear la actividad de asistencia remota en tiempo real.
  • Aplica los requisitos de cumplimiento: solo los dispositivos administrados y que cumplen con las normas pueden participar en las sesiones de asistencia remota.  

Para los sectores con una alta regulación, la Ayuda Remota ofrece una alternativa a las herramientas de terceros que pueden introducir puntos ciegos de seguridad. Al integrar la seguridad directo en los flujos de trabajo de asistencia remota, las organizaciones pueden reducir de manera significativa el riesgo de acceso no autorizado.

Iniciar una prueba gratuita de la Ayuda Remota de Microsoft Intune

Involucrar a clientes y socios para fortalecer la resiliencia cibernética

La ciberseguridad es un deporte de equipo. A medida que los actores de amenazas cibernéticas se vuelven más sofisticados, la colaboración entre industrias es esencial. Microsoft se compromete a interactuar con clientes y socios para impulsar la seguridad, la innovación y la resistencia. Iniciativas como la Iniciativa de Resiliencia de Windows (WRI, por sus siglas en inglés) se centran en:

  • Reducir la necesidad de privilegios de administrador: ayudar a las organizaciones a adoptar un enfoque de privilegios mínimos a escala.
  • Mejorar la protección de la identidad: fortalecimiento de las defensas contra el phishing y los ataques basados en la identidad.
  • Recuperar máquinas de manera rápida: dota a los equipos de TI de herramientas para almacenar con rapidez dispositivos comprometidos de forma remota.

Al fomentar la colaboración y las medidas de seguridad en constante evolución, Microsoft ayuda a las organizaciones a mantenerse a la vanguardia de las ciberamenazas emergentes. Estas conversaciones continuas con nuestros clientes y socios son cruciales para dar forma a estrategias de seguridad resilientes que se adapten a un panorama de amenazas cibernéticas en constante cambio.

Un enfoque que prioriza la seguridad para el futuro

La creciente dependencia de la asistencia remota exige una mentalidad que priorice la seguridad. Las organizaciones deben reconocer que cada sesión de acceso remoto presenta una oportunidad para la explotación por parte de un elenco de ciberatacantes en constante evolución. En lugar de tratar la seguridad como una idea tardía, debe integrarse a profundidad en la arquitectura de las soluciones de asistencia remota. Un enfoque moderno requiere mitigación proactiva de riesgos, verificación continua y controles de seguridad sin interrupciones que respalden la productividad sin comprometer la protección.

Ahora es el momento de que los líderes de TI y seguridad:

  • Evalúen sus herramientas de asistencia remota actuales, para identificar las brechas y las áreas de mejora.
  • Adopten los principios de Zero Trust, para garantizar que el acceso se verifique y se supervise de forma explícita y continua.
  • Aprovechen soluciones como Microsoft Intune y Remote Help, para implementar capacidades de asistencia remota seguras y de nivel empresarial.

Al seguir estos pasos, pueden fortalecer su postura de seguridad, minimizar el riesgo y garantizar que la asistencia remota siga como una herramienta para la eficiencia operativa en lugar de una puerta de entrada para las amenazas cibernéticas.

Para explorar cómo Zero Trust puede mejorar la seguridad de su asistencia remota, visiten el Taller de Zero Trust, una guía interactiva paso a paso para integrar la seguridad en cada capa de las operaciones de TI, lo que garantiza un enfoque integral y medible para la transformación de la seguridad.

Exploren el taller de Zero Trust

Conozcan más de Microsoft Security

Para obtener más información sobre las soluciones de seguridad de Microsoft, visiten nuestro sitio web. Agreguen a Favoritos el blog de Seguridad para mantenerse al día con nuestra cobertura experta en asuntos de seguridad. Además, síganos en LinkedIn (Microsoft Security) y X (@MSFTSecurity) para conocer las últimas noticias y actualizaciones sobre ciberseguridad. 

Etiquetas:

The post Replantear la seguridad de la asistencia remota en un mundo Zero Trust appeared first on Source LATAM.

 

​The post Replantear la seguridad de la asistencia remota en un mundo Zero Trust appeared first on Source LATAM.