Preventsys Unveils the Latest Version of Its Enterprise Security Management System, Featuring the New Preemptive Threat Defense Module.CARLSBAD, Calif. -- Preventsys Offers The Only Solution That Helps Large Organizations Eliminate Business Disruptions from Cyber Attacks By Enabling a Proactive Information Security Management Lifecycle Process Preventsys Inc., a pioneer in enterprise security management solutions, today introduced the latest version of its Enterprise Security Management system, featuring the new Preventsys Preemptive pre·emp·tive or pre-emp·tive adj. 1. Of, relating to, or characteristic of preemption. 2. Having or granted by the right of preemption. 3. a. Threat Defense module. Preventsys Enterprise Security Management (ESM (1) (Enterprise Storage Management) Managing the online, nearline and offline storage within a large organization. It includes analysis of storage requirements as well as making routine copies of files and databases for backup, archiving, disaster recovery, ) is the first and only information security process management system that enables organizations to comprehensively identify their security weaknesses at all levels of the organization, prioritize pri·or·i·tize v. pri·or·i·tized, pri·or·i·tiz·ing, pri·or·i·tiz·es Usage Problem v.tr. To arrange or deal with in order of importance. v.intr. issues, and take intelligent actions to protect themselves before threats become costly security incidents. The Preventsys Preemptive Threat Defense software module, which was added to the company's latest release of the ESM platform, offers a unique approach to threat prevention by enabling enterprises to effectively create an efficient exposure mitigation and elimination process. Preventsys takes in data from a variety of popular security assessment tools and vulnerability scanners A vulnerability scanner is a computer program designed to search for and map systems for weaknesses in an application, computer or network. Step 1, typically the scanner will first look for active IP addresses, open ports, OSes and any applications running. , correlates the information, prioritizes mitigation tasks, and automates security remediation activities across complex, global, heterogeneous networks (networking) heterogeneous network - A network running multiple network layer protocols such as DECnet, IP, IPX, XNS. to eliminate the root cause of exposure. The system pinpoints machines, applications and devices vulnerable to a specific attack, and based on the likelihood and severity of the threat and value of the asset, it enables organizations to make objective, cost-based decisions on how to reduce their exposure and manage the risk of business disruptions. It enables the intelligent management of security risk for the entire organization. "Cyberattacks are becoming more frequent and continue to evolve; and IT security departments armed only with intrusion prevention See IPS and IDS. and security incident management tools find themselves constantly firefighting 1. firefighting - What sysadmins have to do to correct sudden operational problems. An opposite of hacking. "Been hacking your new newsreader?" "No, a power glitch hosed the network and I spent the whole afternoon fighting fires." 2. and reacting to new incidents and security breaches," said Preventsys CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. Tom Rowley, who was the co-founder and former CEO and chairman of Counterpane Internet Security ''This article or section is being rewritten at Internet security is the process of protecting data and privacy of devices connected to internet from information robbery, hacking, malware infection and unwanted software. . "The only way to get ahead of the problem and improve security is to put in place a closed-loop corrective action A corrective action is a change implemented to address a weakness identified in a management system. Normally corrective actions are instigated in response to a customer complaint, abnormal levels if internal nonconformity, nonconformities identified during an internal audit or workflow process automated by a management system like Preventsys. Managing information security with a comprehensive business process isn't a silver bullet silver bullet - magic bullet , but it is the only way large organizations can accurately measure, forecast and actually improve security over time." According to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. Rowley, "Just as SAP created a workflow system for business operations Business operations are those activities involved in the running of a business for the purpose of producing value for the stakeholders. Compare business processes. The outcome of business operations is the harvesting of value from assets , and Siebel built a system to manage customer relationships, Preventsys offers a workflow system for security - an enterprise-grade management solution that seamlessly links and centrally manages disparate technology products. Companies using the Preventsys system are able to discover, prioritize and mitigate security and compliance concerns across their entire network - maximizing the use of the resources and budgets they have at hand." The Preventsys system addresses all aspects of the information security lifecycle, from automatically discovering assets, to finding vulnerabilities, violations of business requirements, misconfigurations and insecure in·se·cure adj. 1. Lacking emotional stability; not well-adjusted. 2. Lacking self-confidence; plagued by anxiety. in network architecture, to issue prioritization based on asset value and exposure levels to specific threats, to comprehensive remediation workflow. It is the only solution that captures and correlates asset exposure and business rules with threats and their potential financial impact to an organization - in terms of actual asset value as well as the potential cost of operational disruption. "As in all corporate technology markets, a time comes when the innovations at the tactical level must be bound together and managed at a strategic level," said Charles Kolodgy, research director, security products at IDC. "By ensuring greater and more central control of security compliance across heterogeneous global networks, Preventsys is taking an important step toward delivering a complete enterprise security management system." Key benefits include:
A[micro] (1) Comprehensive Coverage - Preventsys correlates security facts
across multiple vendors' security assessment tools, at all layers
of the infrastructure, including hosts, devices, applications,
networks and even wireless. Preventsys unifies the scores of
disparate tools organizations have accumulated through
best-of-breed purchasing.
A[micro] (2) Global Contextual Prioritization - Preventsys enables IT
operations groups to manage one priority queue for all security
activities, no matter how many or from which sources security
facts were collected from. The system also considers business
context, IT priorities, and asset values in calculating the
priority for each task. Security goes from being an IT issue to a
business issue.
A[micro] (3) Complete Security Lifecycle management - Preventsys unifies
various disjointed security teams and disparate tools in an
automated, closed-loop corrective action process, which manages
the complete security lifecycle. Security can be measured,
managed, forecasted and budgeted using the same language as the
rest of the organization.
Preventsys' Enterprise Security Management system consists of an appliance-based Enterprise Security Management server, and one or more Assessment Server appliances A self-contained computer system specialized for network use. Its applications are pre-installed, and access to setup and configuration is via a Web browser. Server appliances may provide a single application or several applications; for example, a single device may provide file server, , which are distributed throughout the organization. The Preemptive Threat Defense module is additional software that can be added to the ESM platform, and compliments the company's previously released Policy & Regulatory Compliance module. Preemptive Threat Defense also includes the Enterprise Security Dashboard, a role-based console that brings the latest threat information to the security and IT departments and pinpoints the organization's most critical security problems. It also shows the top threats and vulnerabilities, overall exposure levels, a snapshot of policy compliance and the top outstanding remediation tasks. The Preemptive Defense System starts at $250,000, and is priced competitively for larger organizations. It will be available in October 2004. About Preventsys Inc. Preventsys is a pioneer in providing network security and risk management systems for large, distributed organizations. Its innovative and award-winning Enterprise Security Management system enables a complete closed-loop, corrective action business process for managing information security across very large heterogeneous networks. Preventsys reduces costs by automating the traditionally manual processes of vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. , configuration management, regulatory policy auditing and compliance, remediation management and enterprise-wide reporting. Preventsys is a privately held company privately held company A firm whose shares are held within a relatively small circle of owners and are not traded publicly. founded in 2002 with venture funding from Enterprise Partners, Apax Partners and UV Partners. The company is headquartered in Carlsbad, Calif. and has regional offices across the US. For more information, please visit the company's Web site at www.preventsys.com or call 760-268-7800. |
|
||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion