“In an ideal world, CISOs, CIOs, IT security directors and administrators can take a look at their network and close any gaps that expose vulnerabilities, but the reality is, most organizations have ‘known unknowns’ – assets that are out of sight, not properly monitored or tracked, but important due to their downstream impact on other assets that are visible,” said Parveen Jain, president and CEO of RedSeal Networks. “You can’t protect what you can’t see.”
RedSeal 6.5 adds over 60 new features to the platform in order to meet the rigorous requirements of some of the world’s largest networks. First, RedSeal is extending its security risk management capabilities to visualize and monitor access policy for wireless network controllers. Support for wireless network controllers extends visibility to constantly changing and elusive Wi-Fi endpoints.
With the rise of BYOD initiatives it can be critical to monitor additional endpoints and ensure that access to critical network assets is monitored.
According to a January 2013 report from Osterman Research that surveyed 112 North American companies and government organizations with over 500 employees, one-third of organizations that offer Wi-Fi access to guests do not have a dedicated guest network, allowing non-employees to access the same corporate assets as employees. The report also found that while 82% of companies cite security as a major concern around BYOD, nearly 30% have no security software or protocols in place around their BYOD program.
RedSeal 6.5 adds deeper risk analysis and metrics for proactive mitigation of threats and reactive damage assessment analysis in the event of an attack. Analytics for proactive threat mitigation include Common Configuration Enumeration (CCE) scores to identify host configuration risk and in addition to vulnerability scores to identify the highest risk systems. Damage assessment analysis defines the scope of a compromise and helps rationalize the extent of potential impact for IT response teams.
RedSeal 6.5 also includes extensive integration into three SIEM solutions. The integration bridges the divide between proactive and reactive security systems with an additional level of network context and event filtering for faster response to critical incidents and a reduction in event overload. RedSeal Networks currently supports HP ArcSight, McAfee Enterprise Security Manager, and IBM Q1.