How to create a multi-layered security plan [Adventures in SMB Video]

Imagine if you just had a single simple lock on your safe… if a burglar comes and gets through that one lock, they have access to all of your treasures as there is only one single point of failure for them to get through. However, if you had multiple locks, and multiple layers they had to get through, it would take them longer and be harder for them to break in. With multi-layered security, you are not sticking to a single point of failure, you add lots of different layers of security to expand the overall security presence.

In this video Adventure Guide Avery joins Veteran IT Pro Joaquin Ochoa to reveal the secrets of a multi-layered security plan. Learn possible layers you should consider when building SMB plans, and common misconceptions people often have about security.

You may have heard that HPE ProLiant Gen10 Servers are the most secure industry standard servers in the world. But, that doesn’t mean you shouldn't take additional steps to protect your server infrastructure! Let's take a quick overview of layers you can consider when creating a multi-layered security plan (in the video above, Joaquin gives more specifics for each layer including how to set up security features and what to consider when doing so).

You may be wondering where you should even begin when building a multi-layered security plan. That's easy, Joaquin advises you first look at the edge of the network, your Internet to Local Area Connection. This is often your gateway or your router product. This will be the front line of protection. Adding security here can help you protect against anyone coming into the network that shouldn't be there.

The second layer of security you may want to consider is your end-point security, this includes your workstations, laptops, and devices. You will want to add additional security here to protect against viruses and malware. This could be in the form of anti-virus software for example.

It is also important to keep your system up to date with the latest patches, firmware, and updates. These can address any new vulnerabilities that hackers may find. Microsoft and HPE have a great solution to help ensure your system is up to date with the latest patches and firmware: Windows Server Update Services. Included in Windows Server 2016 and Windows Server 2019, Windows Server Update Services runs on a virtual machine inside your network and downloads the latest patches, updates, and security fixes directly from the Microsoft website. This will help you greatly in keeping all workstations and laptops up to date so known vulnerabilities are not being exploited by hackers to take advantage of your system.

Another layer of security to include should be from Active Directory and Group Policy Objects (GPOs). GPOs are finite rules inside a Windows network that can be used to get down to the granular security settings. GPOs can be used to protect devices and you can also expand on user GPOs to add additional levels of security.

The combination of all of these layers working hand in hand with other advanced security features found in HPE ProLiant Gen10 Servers and Windows Server 2016 help provide the optimum level of security for any SMB.

Bottom line: even SMBs need to have an enterprise mentality when it comes to security, you can't think small! Remember, you're never too small for big security.


Willa Anderson
Hewlett Packard Enterprise

0 Kudos
About the Author


Willa manages the HPE | Microsoft Coffee Coaching program. Follow along to learn more about the latest HPE OEM Microsoft product releases and how the HPE Microsoft partnership can benefit partners and customers.