Black Dragon Software introduces proVizor security risk measurement -SRM- solution.Black Dragon Software, LLC (Logical Link Control) See "LANs" under data link protocol. LLC - Logical Link Control , an emerging provider of software and services targeted at IT Security Risk Measurement and enterprise risk modeling, has announced the launch of proVisor Pro`vi´sor n. 1. One who provides; a purveyor. 2. (R. C. Ch.) The purveyor, steward, or treasurer of a religious house. 3. (Eng. Hist.) One who procures or receives a papal provision. See Provision, 6. , the industry's first quantifiable, objective, standards-based Security Risk Measurement solution. The company's first generally available security measurement offering, proVizor v. 1.1, enables organizations to form judgments about their IT security risks using an objective, easy to understand measurement based on the concept of Time-To-Defeat. These Time-To-Defeat values are applied to attributes common to all IT services and rely upon mathematical algorithms which express the results of extensive research into service vulnerabilities and attack trees developed by Black Dragon with the assistance of leading security industry partners. A key concept in proVizor is the measurement of security from relevant Points of View (POV POV abbr. point of view ). "Organizations recognize that the level of security required to protect against an attack from someone inside the organization is not the same as the level required for someone attacking the enterprise through the Internet," said Douglas Dormer dormer Window set vertically in a structure that projects from a sloping roof. It often illuminates a bedroom. In the late Gothic and early Renaissance periods, elaborate masonry dormers were designed. , President of Black Dragon Software. "proVizor allows managers to express IT security policies in terms of threshold metrics metrics Managed care A popular term for standards by which the quality of a product, service, or outcome of a particular form of Pt management is evaluated. See TQM. for each relevant Points of View and then track performance over time against those threshold metrics. At this time, there is no other solution to so clearly and directly document due diligence Research; analysis; your homework. This term has caught on in all industries, because it sounds so "wired." Who would want to do analysis or research when they can do due diligence. See wired. in IT security." The resulting measurement information allows organizations to optimize security investments, assess security risks and enhance security-driven revenue opportunities. As important, proVizor allows organizations to translate critical regulatory requirements Regulatory requirements are part of the process of drug discovery and drug development. Regulatory requirements describe what is necessary for a new drug to be approved for marketing in any particular country. into quantifiable metrics, then document compliance with those metrics. "The regulatory environment and recent worm activity have moved information security from a good idea to a mandate," said Paul Proctor Paul Proctor is an editorial columnist who identifies himself as a "rural resident of the Volunteer State" residing somewhere near Nashville, Tennessee. His columns, under the heading "Biblically Speaking", are published at NewsWithViews. , Vice President, Security and Risk Strategies, META Group. "Establishing a common language and basis of understanding across all management and executive levels, is necessary for enterprise information security to be accurately budgeted and measured." "Now, more than ever, is the time for a Security Risk Measurement solution like proVizor," said David Smith, CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of Black Dragon Software. "Being connected to the Internet is essential to staying in business. Being connected also means being exposed to cyberthreats. The only question is how exposed? proVizor offers the only solution on the market designed specifically to answer that question." Security Risk Measurement recognizes the context-sensitive nature of IT security. Every company, in every industry, establishes its own objectives and criteria for IT security. SRM (1) (Storage Resource Management) The management of the storage resources in an organization in order to avoid duplication of files and to determine space utilization across all servers. allows for the objective, quantifiable, repeatable and predictable measurement of an IT security environment taking into consideration the unique elements of any environment. It does not presume to make the judgment of the adequacy of an organization's security. Instead, it provides the metrics by which an organization can make an informed judgment and then track security performance over time. Black Dragon Software is a provider of software and services targeted at IT Security Risk Measurement and enterprise risk modeling. These solutions enable organizations to form judgements about their IT security risks using an objective, easy to understand measurement standard based on a defendable, repeatable mathematical database and process. These Security Risk Measurement solutions allow organizations to optimize security investments, assess security risks and enhance security-driven revenue opportunities. |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion