IBM Cloud Authors: Elizabeth White, Sematext Blog, Pat Romanski, Carmen Gonzalez, Yeshim Deniz
News Feed Item
New RedSeal 6.5 Platform Illuminates Network Dark Space and Offers the Industry's Most Complete Picture of Network Security Risk With Support for BYOD, SIEM and Deeper Risk Metrics
Leader in Security Risk Management Estimates Organizations Aren't Monitoring up to 18% of Their Network, Leaving "Dark Space" Vulnerable to Cyber Threats
|By Marketwired .
|February 5, 2013 12:00 PM EST
SANTA CLARA, CA -- (Marketwire) -- 02/05/13 -- RedSeal Networks, the leader in security risk management for cyber attack prevention, announced today that it is shipping the latest version of the RedSeal Platform to protect companies and government agencies from attacks across the network. Companies are especially in vulnerable network "dark space" -- the up to 18% of network infrastructure that is unmanaged, unmonitored, and unseen by security tools because administrators don't know it exists. With RedSeal 6.5, customers can now get a complete security risk map, including all infrastructure, to reduce the attack risk surface and properly prioritize risk mitigation strategies. RedSeal now extends its continuous monitoring and security risk management capabilities to include over 60 new features such as support for bring your own device (BYOD) initiatives, deeper risk metrics and SIEM integration.
Network security dark space is defined as any network infrastructure that doesn't appear in the "database of record" or "golden store" of configuration data, including firewalls, routers, proxies, load balancers, as well as endpoints and hosts. In a highly complex network with tens of thousands of nodes, this represents a massive challenge for organizations. RedSeal estimates that most organizations are only monitoring as little as 82% of their network, leaving up to 18% as network dark space -- left exposed simply because it's not on their radar.
"In an ideal world, CISOs, CIOs, IT security directors and administrators can take a look at their network and close any gaps that expose vulnerabilities, but the reality is, most organizations have 'known unknowns' -- assets that are out of sight, not properly monitored or tracked, but important due to their downstream impact on other assets that are visible," said Parveen Jain, president and CEO of RedSeal Networks. "You can't protect what you can't see. RedSeal 6.5 helps our customers find the unknown parts of their network and visualize risk to proactively prevent cyber-attacks."
The RedSeal 6.5 Platform
RedSeal 6.5 adds over 60 new features to the platform in order to meet the rigorous requirements of some of the world's largest networks. First, RedSeal is extending its security risk management capabilities to visualize and monitor access policy for wireless network controllers. Support for wireless network controllers extends visibility to constantly changing and elusive Wi-Fi endpoints.
With the rise of BYOD initiatives it can be critical to monitor additional endpoints and ensure that access to critical network assets is monitored. According to a January 2013 report from Osterman Research that surveyed 112 North American companies and government organizations with over 500 employees, one-third of organizations that offer Wi-Fi access to guests do not have a dedicated guest network, allowing non-employees to access the same corporate assets as employees. The report also found that while 82% of companies cite security as a major concern around BYOD, nearly 30% have no security software or protocols in place around their BYOD program.
"Network security assurance is a process that benefits from methodical, recurring sweeps for vulnerabilities and gaps," said Michael Tennefoss, Aruba Networks' Vice President of Strategic Partnerships. "Aruba's Mobile Virtual Enterprise (MOVE) architecture, with ClearPass Access Management system, delivers best-in-class BYOD and Wi-Fi security that is complemented by RedSeal's on-going compliance monitoring. Accessing data seamlessly from Aruba's Wi-Fi infrastructure enables RedSeal to obtain a more complete topology map and risk model for faster detection of security risks and gaps in security posture."
In addition to wireless network support, RedSeal 6.5 adds deeper risk analysis and metrics for proactive mitigation of threats and reactive damage assessment analysis in the event of an attack. Analytics for proactive threat mitigation include Common Configuration Enumeration (CCE) scores to identify host configuration risk and in addition to vulnerability scores to identify the highest risk systems. Damage assessment analysis defines the scope of a compromise and helps rationalize the extent of potential impact for IT response teams.
RedSeal 6.5 also includes extensive integration into three of the leading Security Information and Event Management (SIEM) solutions. The integration bridges the divide between proactive and reactive security systems with an additional level of network context and event filtering for faster response to critical incidents and a reduction in event overload. RedSeal Networks currently supports leading SIEM platforms, including HP ArcSight, McAfee Enterprise Security Manager, and IBM Q1.
"Throughout my many years in information security, I am continuously surprised by the obvious vulnerabilities within most networks. The recent explosion of BYOD only serves to extend the potential attack surface, adding risk and complexity," said Jon Oltsik, senior principal analyst at ESG. "Thankfully, we have seen some strong innovation in risk management recently, making it easier than ever for security practitioners to visualize their networks, identify vulnerabilities and enhance threat prevention."
The RedSeal 6.5 Platform is available immediately.
About RedSeal Networks, Inc.
RedSeal Networks is the leading provider of security risk management solutions for cyber attack prevention. Using patented network visualization and predictive threat modeling, RedSeal provides the most complete picture of risk from cyber attacks. The RedSeal Platform delivers the industry's most powerful network security insights, illuminates network security dark space and enables enterprises to continuously monitor controls. The world's largest government and commercial organizations use RedSeal to prioritize vulnerability remediation efforts, dramatically cut compliance costs and optimize their security architectures.
For more information, visit RedSeal at www.redsealnetworks.com
What happens when the different parts of a vehicle become smarter than the vehicle itself? As we move toward the era of smart everything, hundreds of entities in a vehicle that communicate with each other, the vehicle and external systems create a need for identity orchestration so that all entities work as a conglomerate. Much like an orchestra without a conductor, without the ability to secure, control, and connect the link between a vehicle’s head unit, devices, and systems and to manage the ...
Dec. 7, 2016 10:30 PM EST Reads: 817
"Once customers get a year into their IoT deployments, they start to realize that they may have been shortsighted in the ways they built out their deployment and the key thing I see a lot of people looking at is - how can I take equipment data, pull it back in an IoT solution and show it in a dashboard," stated Dave McCarthy, Director of Products at Bsquare Corporation, in this SYS-CON.tv interview at @ThingsExpo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Dec. 7, 2016 10:00 PM EST Reads: 1,187
Data is the fuel that drives the machine learning algorithmic engines and ultimately provides the business value.
In his session at Cloud Expo, Ed Featherston, a director and senior enterprise architect at Collaborative Consulting, discussed the key considerations around quality, volume, timeliness, and pedigree that must be dealt with in order to properly fuel that engine.
Dec. 7, 2016 08:15 PM EST Reads: 2,207
IoT solutions exploit operational data generated by Internet-connected smart “things” for the purpose of gaining operational insight and producing “better outcomes” (for example, create new business models, eliminate unscheduled maintenance, etc.). The explosive proliferation of IoT solutions will result in an exponential growth in the volume of IoT data, precipitating significant Information Governance issues: who owns the IoT data, what are the rights/duties of IoT solutions adopters towards t...
Dec. 7, 2016 05:15 PM EST Reads: 270
Businesses and business units of all sizes can benefit from cloud computing, but many don't want the cost, performance and security concerns of public cloud nor the complexity of building their own private clouds. Today, some cloud vendors are using artificial intelligence (AI) to simplify cloud deployment and management. In his session at 20th Cloud Expo, Ajay Gulati, Co-founder and CEO of ZeroStack, will discuss how AI can simplify cloud operations. He will cover the following topics: why clou...
Dec. 7, 2016 05:15 PM EST Reads: 930
As data explodes in quantity, importance and from new sources, the need for managing and protecting data residing across physical, virtual, and cloud environments grow with it. Managing data includes protecting it, indexing and classifying it for true, long-term management, compliance and E-Discovery. Commvault can ensure this with a single pane of glass solution – whether in a private cloud, a Service Provider delivered public cloud or a hybrid cloud environment – across the heterogeneous enter...
Dec. 7, 2016 05:15 PM EST Reads: 1,753
Everyone knows that truly innovative companies learn as they go along, pushing boundaries in response to market changes and demands. What's more of a mystery is how to balance innovation on a fresh platform built from scratch with the legacy tech stack, product suite and customers that continue to serve as the business' foundation.
In his General Session at 19th Cloud Expo, Michael Chambliss, Head of Engineering at ReadyTalk, discussed why and how ReadyTalk diverted from healthy revenue and mor...
Dec. 7, 2016 04:30 PM EST Reads: 1,679
The many IoT deployments around the world are busy integrating smart devices and sensors into their enterprise IT infrastructures. Yet all of this technology – and there are an amazing number of choices – is of no use without the software to gather, communicate, and analyze the new data flows. Without software, there is no IT.
In this power panel at @ThingsExpo, moderated by Conference Chair Roger Strukhoff, Dave McCarthy, Director of Products at Bsquare Corporation; Alan Williamson, Principal...
Dec. 7, 2016 04:15 PM EST Reads: 380
The 20th International Cloud Expo has announced that its Call for Papers is open. Cloud Expo, to be held June 6-8, 2017, at the Javits Center in New York City, brings together Cloud Computing, Big Data, Internet of Things, DevOps, Containers, Microservices and WebRTC to one location.
With cloud computing driving a higher percentage of enterprise IT budgets every year, it becomes increasingly important to plant your flag in this fast-expanding business opportunity. Submit your speaking proposal ...
Dec. 7, 2016 03:45 PM EST Reads: 2,265
You have great SaaS business app ideas. You want to turn your idea quickly into a functional and engaging proof of concept. You need to be able to modify it to meet customers' needs, and you need to deliver a complete and secure SaaS application. How could you achieve all the above and yet avoid unforeseen IT requirements that add unnecessary cost and complexity? You also want your app to be responsive in any device at any time.
In his session at 19th Cloud Expo, Mark Allen, General Manager of...
Dec. 7, 2016 03:30 PM EST Reads: 1,787
Successful digital transformation requires new organizational competencies and capabilities. Research tells us that the biggest impediment to successful transformation is human; consequently, the biggest enabler is a properly skilled and empowered workforce. In the digital age, new individual and collective competencies are required.
In his session at 19th Cloud Expo, Bob Newhouse, CEO and founder of Agilitiv, drew together recent research and lessons learned from emerging and established compa...
Dec. 7, 2016 02:30 PM EST Reads: 944
"IoT is going to be a huge industry with a lot of value for end users, for industries, for consumers, for manufacturers. How can we use cloud to effectively manage IoT applications," stated Ian Khan, Innovation & Marketing Manager at Solgeniakhela, in this SYS-CON.tv interview at @ThingsExpo, held November 3-5, 2015, at the Santa Clara Convention Center in Santa Clara, CA.
Dec. 7, 2016 02:30 PM EST Reads: 4,321
Information technology is an industry that has always experienced change, and the dramatic change sweeping across the industry today could not be truthfully described as the first time we've seen such widespread change impacting customer investments. However, the rate of the change, and the potential outcomes from today's digital transformation has the distinct potential to separate the industry into two camps: Organizations that see the change coming, embrace it, and successful leverage it; and...
Dec. 7, 2016 02:15 PM EST Reads: 3,392
Bert Loomis was a visionary. This general session will highlight how Bert Loomis and people like him inspire us to build great things with small inventions. In their general session at 19th Cloud Expo, Harold Hannon, Architect at IBM Bluemix, and Michael O'Neill, Strategic Business Development at Nvidia, discussed the accelerating pace of AI development and how IBM Cloud and NVIDIA are partnering to bring AI capabilities to "every day," on-demand. They also reviewed two "free infrastructure" pr...
Dec. 7, 2016 02:15 PM EST Reads: 1,122
Financial Technology has become a topic of intense interest throughout the cloud developer and enterprise IT communities.
Accordingly, attendees at the upcoming 20th Cloud Expo at the Javits Center in New York, June 6-8, 2017, will find fresh new content in a new track called FinTech.
Dec. 7, 2016 02:15 PM EST Reads: 2,202
"Dice has been around for the last 20 years. We have been helping tech professionals find new jobs and career opportunities," explained Manish Dixit, VP of Product and Engineering at Dice, in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Dec. 7, 2016 01:45 PM EST Reads: 1,127
"At ROHA we develop an app called Catcha. It was developed after we spent a year meeting with, talking to, interacting with senior citizens watching them use their smartphones and talking to them about how they use their smartphones so we could get to know their smartphone behavior," explained Dave Woods, Chief Innovation Officer at ROHA, in this SYS-CON.tv interview at 19th Cloud Expo, held November 1-3, 2016, at the Santa Clara Convention Center in Santa Clara, CA.
Dec. 7, 2016 12:30 PM EST Reads: 652
SYS-CON Events has announced today that Roger Strukhoff has been named conference chair of Cloud Expo and @ThingsExpo 2017 New York.
The 20th Cloud Expo and 7th @ThingsExpo will take place on June 6-8, 2017, at the Javits Center in New York City, NY.
"The Internet of Things brings trillions of dollars of opportunity to developers and enterprise IT, no matter how you measure it," stated Roger Strukhoff. "More importantly, it leverages the power of devices and the Internet to enable us all to im...
Dec. 7, 2016 12:30 PM EST Reads: 761
Extracting business value from Internet of Things (IoT) data doesn’t happen overnight. There are several requirements that must be satisfied, including IoT device enablement, data analysis, real-time detection of complex events and automated orchestration of actions. Unfortunately, too many companies fall short in achieving their business goals by implementing incomplete solutions or not focusing on tangible use cases.
In his general session at @ThingsExpo, Dave McCarthy, Director of Products...
Dec. 7, 2016 12:30 PM EST Reads: 853
We are always online. We access our data, our finances, work, and various services on the Internet. But we live in a congested world of information in which the roads were built two decades ago. The quest for better, faster Internet routing has been around for a decade, but nobody solved this problem. We’ve seen band-aid approaches like CDNs that attack a niche's slice of static content part of the Internet, but that’s it. It does not address the dynamic services-based Internet of today. It does...
Dec. 7, 2016 12:00 PM EST Reads: 1,137