Journal of Engineering Research and Reports

This study investigates endpoint security strategies for remote workforces utilizing VPN networks, focusing on mitigating ransomware and botnet attacks. A mixed-methods approach was employed, analyzing the effectiveness of existing endpoint solutions and simulating network segmentation strategies. The study highlights the enhanced effectiveness of traditional endpoint security solutions when augmented with advanced technologies with specific applications including email filtering to block phishing attempts, MFA to verify user identities, EDR systems to detect and block unauthorized access tools, and encryption to secure data during cloud services. The introduction of network segmentation and zero-trust architectures further secured data centers by limiting lateral movements and requiring continuous re-authentication. Results demonstrate that while traditional endpoint security solutions remain essential, their effectiveness can be enhanced through a multi-layered approach incorporating advanced technologies with this research showing quick response times, high containment efficiency, and fast recovery speeds across all segments, with the Finance Department notably achieving a response time of 5 minutes and containment efficiency of 95%. Specifically, our cost-benefit analysis of network segmentation strategies shows that Strategy 1, despite a higher cost, offers superior improvements in throughput and latency reduction, providing more value per dollar spent. These results underscore the plan’s capability in rapidly detecting, containing, and recovering from attacks. User education significantly improved cybersecurity awareness and reduced susceptibility to attacks. This research provides practical recommendations for organizations to strengthen their endpoint security posture and protect their remote workforce through a combination of advanced technologies, proactive measures, and continuous user education.