Security: from monitoring to awareness
(6 votes, average: 4.50 out of 5)
Loading ...Global economy downturn put new pressure on some security solutions weaknesses in term of high cost of ownership/administration, low manageability, clumsy incident management processes and cumbersome configuration procedures.
This happens when the whole security solution (or part of it) is conceived thoughtlessly or with a patchy attitude (oh, I have this issue/new need, let’s fix it).
Security has been, still is and will always be a process and everything related to that should never be an afterthought, especially if this has impact on resources and budget.
When undersized groups of people need to manage consistently security of a corporate information flow, the accent is less on watching and more on consciousness… less on surveillance and more on knowing what’s going on… less on monitoring and more, much more on awareness.
Monitoring is ability to watch a dashboard and see, for instance, that an attack is in progress or that a firewall node of a cluster in xyz location is in error state.
Security Awareness is about being conscious of the complete situation in the lesser time possible, and knowledgeable of the most efficient countermeasures to mitigate the risks while ensuring that damage possibilities or data loss/thief is nullified.
This process starts from monitoring and surveillance, to move to log processing and analysis, reactions, alert escalation, reporting, incident management and auditing, and more… all glued in a usable interface to enable security admins to take real advantage of a solution allowing efficient security policy enforcement.
When we conceived StoneGate Network Security Architecture many years ago, we deeply thought and discussed internally on this topic.
We analyzed what it takes to configure (local or remote) devices, how to scale to even very large deployments with few people available, how to process big amount of information coming from multiple and different sources, how to provide differentiated information views to multiple type of security administrators, how to allow decision support based on refined, correlated, extensive or high-level information, what is needed to be conscious of defcon state and how to react in timely fashion efficiently.
And we developed our technology and solutions over the years with these concepts in mind, with a great passion and constantly listening to our customers about their growing needs, their experience, their way of operating security.
This is still happening (remember? security as a process…) and every time we announce a new release we are proud to deliver a solution containing our best knowledge in core topic of our business mission: Secure the Information Flow.
StoneGate users around the world know this very well, since they are keen on manage very extensive and complex VoIP-enabled multi-communication-paths network security solutions with same simplicity and efficiency as managing a couple of local firewalls… and sometimes even with same resources!
One thing is to have super-performing, leading-edge, full-featured security engines producing tons of humanly-unreadable logs requiring an army just to understand what’s happening.
Brand new experience is to cope with this performance requirements while providing a usable, flexible and powerful support to security enforcement throughout the whole information flow.
Network Security. Simplified.
Leave a Reply
You must be logged in to post a comment.
Recent Comments