Hi All

I would like to know what most people are doing for secure access to company resources and applications these days.

We currently use Anyconnect for third parties, with some posture checking using the posture agent on Anyconnect. We then lock access down with DAP policies and also use Duo for MFA.

The security risk lies whereby if the user has access to a jump server, RDP, or ssh session, once they are in, they can then move laterally, if not controlled elsewhere.

What are people doing to tighten up these kind of things?