 |
|
|
|
Why RedSeal Systems — The Need for a Network-Aware Solution Platform
Network computing — distributed collections of host computers interconnected by a communications infrastructure — has brought unprecedented power to today's business information systems. However, the inherent interconnectivity and complexity of modern computing architectures have also exposed business to unprecedented levels of risk. It is no longer possible to secure critical business information by evaluating individual systems or connections. Network computing architectures offer an exponential number of potential attack paths, each involving combinations of multiple systems and connections.
To deliver high availability and security, your IT organization must design and implement security policies based on the interplay between all of your networks and systems. But the sheer complexity of the network makes it difficult to ensure that your design truly achieves its stated objectives. And even if it does, the ongoing crush of additions, changes and patches can cause your actual implementation to drift away from the design. Can you confidently answer infrastructure-wide questions such as:
-
Have I blocked every attack sequence a hacker could use to get to my SAP system?
-
Am I really in compliance with industry and government regulations?
-
Is my MSSP really delivering what they said they would?
-
Do I actually need to buy additional firewalls or security products?
-
What are the most important vulnerabilities my team needs to focus on?
Unfortunately, most of today's tools do not answer these questions. Many look only at the vulnerabilities of individual hosts or network devices. Others focus on the many processes involved in managing change in the IT infrastructure. All of these tools lack understanding of the consequences of vulnerabilities and changes to the computing infrastructure as a whole. Today, this awareness can only be provided in an ad-hoc fashion by individuals with a deep, intuitive understanding of your network.
RedSeal Systems brings a new level of insight to your network, security and IT management. RedSeal's software automatically analyzes the interconnectivity of your network and the security of each of its underlying components. It gives you an understanding of your true exposure by combining the vulnerability of each system with the ability of an attacker to access it — either directly over the network or through a multi-stage attack from other systems. And RedSeal gives you the actionable steps you can take to most effectively improve your overall security posture.
RedSeal Solutions
RedSeal software delivers an immediate impact to many of the key issues facing IT organizations today. These include:
- FIREWALL-ROUTER AUDIT
RedSeal firewall audit verifies that your device configurations follow industry and security best practices. It verifies conformance to corporate policies, standards and regulations, identifies violations and recommends changes.
- NETWORK AUDIT
RedSeal network audit provides an architecture review of your complete network. It determines which systems are reachable from any given point on the network and maps the implementation of network segmentation and zoning. The network audit instantly identifies holes in the network, reducing the need for formal penetration testing.
- PCI REQUIREMENT-1 ASSESSMENT
RedSeal PCI assessment verifies that your network is compliant with PCI DSS requirement 1 — a requirement if you process, store or transmit payment card data. RedSeal analyzes your actual network against the 5 PCI specified zones, identifies all protocols between the 5 zones, and tracks and links the justification for these protocols.
- VULNERABILITY MANAGEMENT
RedSeal vulnerability management identifies the issues that pose the biggest threat to your critical systems and data. It combines individual system vulnerability with network accessibility and calculates the potential for multi-stage attacks that leapfrog from one vulnerable system to another. RedSeal then prioritizes remediation actions to provide the maximum impact on your overall security posture.
- RISK ASSESSMENT
RedSeal risk assessment provides you with metrics of the risk to your overall computing infrastructure as well as each of its underlying business systems and data. The risk metrics incorporate both underlying system vulnerability and network-level compensating controls. RedSeal also offers multi-dimensional analysis and heat map visualization of your infrastructure-wide risk, allowing you to rapidly and intuitively gauge your overall risk posture.
|
