Frankly Speaking 7/19/22 - Companies should stop using VPNs!

Disclaimer: Opinions expressed are solely my own and do not express the views or opinions of my employer or any other entities with which I am affiliated.

I’m coming back from vacation, so this article should be a bit more coherent than others since I’m more mentally rested :). Anyway, I’m starting to go to more local events and dinners to meet up with other security professionals. If there are any cool events, let me know! I would also love an invite!

LET’S BE FRANK

This week’s newsletter is going to talk about everyone’s favorite topic: VPNs. I feel like it’s one of those things where people want to get rid of it but never do. It’s never clear to me why. I wonder if they feel like it gives them a (false) sense of security. Security teams like it because they need something to do. It’s just a burden on infrastructure teams, to be honest. I’ve talked about how network security is dead in the past, and VPNs should honestly die with it.

Anyway, in this post, I’m going to cover the following:

• Why VPNs are an outdated technology

• Some potential solutions

• Benefits of those solutions

I honestly think this is probably one of my least controversial posts in recent history. Maybe, the solutions are hot takes, but getting rid of a VPN should be a no-brainer.