RedSeal Networks Announces Security Technical Implementation Guide (STIG) Support for Networking Devices

SANTA CLARA, Calif. — November 5, 2013—RedSeal (www.redseal.co), the leader in network infrastructure security management, today announced Security Technical Implementation Guide (STIG) support for the RedSeal Platform, reducing attack risk for federal customers while also ensuring compliance with mandatory STIG requirements in a single solution and lowering overall cost of security operations. RedSeal Networks provides a network infrastructure security management solution to federal customers, including the U.S. Department of Defense (DoD).

“As the USMC AO, the RedSeal Platform is the only product we have used that has allowed us to demonstrate the impact of the OpFor prior to making requested changes to the MCEN in support of operations,” said Jason Carrier, HQMC C4CY Cyber Assessment Lead at U.S. Marine Corps. “Since requests for modifications can be mapped near real-time, I can visually see the risk and set timelines within the tool to ensure that temporary risks do not become enduring.”

Currently there are at least five vendor solutions used throughout the DoD that do varying degrees of STIG checking, plus manual execution. Support for STIG compliance among network device vendors and systems that analyze devices for security compliance is limited. RedSeal Networks’ solution provides the most turnkey STIG solution with the highest level of accuracy.

“Every customer and prospect that has asked for STIGs wants it because then they only have to go to one place for it, not numerous other solutions,” said Parveen Jain, CEO at RedSeal Networks. “By integrating STIG support into a Network Infrastructure Security Management solution, RedSeal Networks delivers a single powerful solution obviating the need for customers to procure multiple systems.”

“Using the RedSeal Platform to map site infrastructure and test for compliance against DISA STIGs, as well as the ability to compare the documented architecture against the real architecture, has not only saved us hundreds of man hours but increased our coverage from representative sampling to total assets,” said Carrier.

In addition, RedSeal Networks is also offering updated Federal Information Processing Standard Publication 140-2 (FIPS) support, a U.S. government computer security standard. As FIPS 140-2 standards evolve, the RedSeal Platform is updated to ensure that all federal customers that need FIPS 140-2 have the latest and best support.

RedSeal Networks has begun the Common Criteria process, an international standard required by many federal customers, and is also now listed in evaluation ( https://www.cse-cst.gc.ca/en/publication/redseal-platform-v701 ).

The RedSeal Platform is deployed at the largest government agencies and enterprises around the world to help security professionals discover and remedy infrastructure security gaps in their networks before hackers can exploit those gaps to launch cyber-threats. The platform continuously visualizes key points of potential security breach, non-compliance, and attack risk in complex enterprise security infrastructure to prioritize remedial actions.