Skybox Security Recognized for CVE Compatibility.PALO ALTO Palo Alto, city, California Palo Alto (păl`ō ăl`tō), city (1990 pop. 55,900), Santa Clara co., W Calif.; inc. 1894. Although primarily residential, Palo Alto has aerospace, electronics, and advanced research industries. , Calif. -- First Security Risk Management Solution to be Awarded with Important Industry Certification at MIS Technology Institute's InfoSec World Conference and Exposition Skybox sky·box n. An elevated, usually enclosed private compartment for viewing events at a sports stadium. Noun 1. skybox - an elevated box for viewing events at a sports stadium (R) Security, Inc., the leader in Security Risk Management (SRM (1) (Storage Resource Management) The management of the storage resources in an organization in order to avoid duplication of files and to determine space utilization across all servers. ), announced today that it has been formally recognized for Common Vulnerabilities and Exposures (CVE (Common Vulnerabilities and Exposures) A list of information security exposures and vulnerabilities sponsored by US-CERT and maintained by the MITRE Corporation. (R)) compatibility for its enterprise software solution, Skybox View. The award, presented to Skybox at the MIS Technology Institute's InfoSec World Conference and Exposition, recognizes products that have incorporated MITRE Corporation's CVE standard names for security vulnerabilities and exposures to foster information sharing See data conferencing. across security solutions. Skybox was one of ten companies receiving certification. "Skybox has demonstrated its commitment to providing its customers with a comprehensive security risk management solution by meeting strict CVE compatibility evaluation requirements. Skybox View is fully CVE-compatible, bringing enterprises using Skybox View the ability to cross-share important vulnerability information," said Robert A. Martin, MITRE CVE Compatibility Lead. Certificates of Compatibility were presented by Jerry Dixon, the Deputy Director of the National Cyber Security Division The National Cyber Security Division (NCSD) is a division of the Office of Cyber Security & Communications, within the United States Department of Homeland Security's Directorate of National Protection and Programs. , U.S. Computer Emergency Readiness Team (CERT) at the Department of Homeland Security Noun 1. Department of Homeland Security - the federal department that administers all matters relating to homeland security Homeland Security executive department - a federal department in the executive branch of the government of the United States . CVE is a list or dictionary that provides common names for publicly known information security vulnerabilities and exposures, facilitating the exchange of vulnerability information across separate databases and tools in a vendor-independent manner. CVE-compatible products provide organizations with better coverage, easier interoperability and enhanced security. CVE is also endorsed by leading representatives from the information security community. "Skybox Security is proud to be the first security risk management solution to be awarded CVE compatibility, as well as one of the select few who have achieved the final phase of MITRE's formal CVE Compatibility Process," said Gidi Cohen cohen or kohen (Hebrew: “priest”) Jewish priest descended from Zadok (a descendant of Aaron), priest at the First Temple of Jerusalem. The biblical priesthood was hereditary and male. , chief strategy officer for Skybox Security. "Skybox is actively committed to industry standards. With over 200 products and services declared CVE-compatible, the CVE Initiative is an important and influential community working toward the common purpose of better security." About The Common Vulnerabilities and Exposures (CVE) Initiative In 1999, MITRE created CVE to act as a bridge between different information security tools and services. The CVE Editorial Board includes numerous information security-related organizations including commercial security tool vendors, members of academia, research institutions, government agencies, and other prominent security experts that work together to foster the integration and direction of CVE. The CVE Initiative is funded by the U.S. Department of Homeland Security. About The MITRE Corporation (body) MITRE Corporation - A US federally funded R&D center, spun off in 1958 from the MIT Lincoln Laboratory (also an FFRDC). MITRE is a non-profit corporation chartered to do R&D in the public interest. MITRE (www.mitre.org) is a not-for-profit national resource that provides systems engineering, research and development, and information technology support to the government. It operates federally funded research and development centers for the Department of Defense, the Federal Aviation Administration Federal Aviation Administration (FAA), component of the U.S. Department of Transportation that sets standards for the air-worthiness of all civilian aircraft, inspects and licenses them, and regulates civilian and military air traffic through its air traffic control and the Internal Revenue Service, with principal locations in Bedford, Mass., and McLean, Va. About Skybox Security Skybox(R) Security, Inc. is the leader of next-generation Security Risk Management (SRM) solutions. The company's flagship product A primary product of a company, which is typically why the company was founded and/or what made it well known. For example, MS-DOS, Windows and the Microsoft Office suite have been flagship products of Microsoft. CorelDRAW is a flagship product of Corel Corporation. , Skybox(R) View, is the first enterprise software platform that raises vulnerability assessment A Department of Defense, command, or unit-level evaluation (assessment) to determine the vulnerability of a terrorist attack against an installation, unit, exercise, port, ship, residence, facility, or other site. , threat analysis, remediation planning and change management to the business risk level where it belongs. By combining business impact analysis and simulation with vulnerability data and network modeling, enterprises can continuously maintain risk-resilient networks, reduce regulatory compliance exposures and shrink the window of exposure from months to hours. With Skybox View, security professionals can take a disciplined approach to measure business risk exposure, understand effectiveness of remediation alternatives, justify mitigation efforts (ROI (Return On Investment) The monetary benefits derived from having spent money on developing or revising a system. In the IT world, there are more ways to compute ROI than Carter has liver pills (and for those of you who never heard of that expression, it means a lot). ) and minimize damage from attacks while lowering operating cost. By enhancing current best practices and internal controls with automated risk management analysis, the security, network and business units can work more effectively as a team. Skybox solutions have been successfully deployed at highly respected Global 2000 companies worldwide. Founded in 2002, the company is headquartered in Palo Alto, California “Palo Alto” redirects here. For other uses, see Palo Alto (disambiguation). Palo Alto (IPA: /ˌpæloʊˈʔæltoʊ/, from Spanish: palo: "stick" and alto: "high", i.e. and is backed by Benchmark Capital, Lightspeed Venture Partners, Carmel Ventures and Mofet Technology Fund. For more information contact 650-565-8060 or http://www.skyboxsecurity.com About Skybox View Skybox(R) View automates labor-intensive risk assessment and remediation planning processes. Skybox View helps enterprises continuously collect, identify, visualize and understand the total risk exposure of digital assets and proactively prioritize and optimize the mitigation steps necessary to prevent internal and external attacks. It represents the missing piece for assessing, evaluating and mitigating pre-attack exposures, taking network information and business impact into account. Unique patented modeling and attack simulation technologies generate a virtual map of business asset exposures distilling thousands of vulnerabilities down to the one to two percent that really matter. "What If" planning analysis puts security, network and business teams on the same page empowering IT organizations to balance the cost and benefit of proposed remediation, network changes or patches before deployment. The open collection architecture leverages existing and future investments in firewall, router, network and vulnerability scanner technologies. |
|
||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion