Welcome!

Recurring Revenue Authors: AppDynamics Blog, Elizabeth White, Pat Romanski, Liz McMillan, Ed Featherston

News Feed Item

FireMon Expands Situational Awareness With Security Manager 7.0

New Continuous Assessment, Best Practice Models and Industry-First BPMN 2.0 Support Improve Ability to Visualize and Manage Changes in Security Posture

OVERLAND PARK, KS -- (Marketwire) -- 02/20/13 -- FireMon, the leading provider of security management and risk analysis solutions, today announced important new capabilities in Security Manager Version 7.0 that greatly improve organizational ability to identify, understand and manage changes in security posture -- in real-time. The new capabilities apply best practice models from FireMon's deep knowledgebase in security infrastructure management, with increased automation, customization and analytical capabilities. As a result, customers can more rapidly and effectively identify, assess and prioritize configuration and compliance issues -- and understand and address higher-level business risk.

Organizations live in a constant state of change -- from infrastructure evolution and device sprawl, to business and personnel upheaval. While point-in-time security and vulnerability assessments can provide a current snapshot of exposure, one employee addition/departure, a new VM or a change to a firewall rule can immediately render an assessment moot. To address this need for greater agility in security posture and risk assessment, the three main enhancements to Security Manager 7.0 include:

  • Continuous Assessment - Offers active and continuous assessment of compliance and security posture to analyze and trend the effects of -- and, if necessary, alert on -- administrative and environmental changes in the enterprise.
  • Best Practice Modeling - Moves from primarily device-centric to control-centric monitoring via prepackaged assessments from the FireMon knowledgebase, or custom assessment definition. Provides a higher-level view of data for quicker, more comprehensive assessments and a better understanding of the implications of change over time.
  • Business Process Standardization - The first security and policy management platform to support the latest version of the Object Management Group's (OMG) Business Process Model and Notation (BPMN) standard. Building on the BPMN 2.0 standard enables easy integration to existing business processes and solutions of FireMon's powerful firewall tools such as rule recommendation and analysis.

"Security and operational teams are stuck between a rock and a hard place," said Jon Oltsik, senior principal analyst at the Enterprise Strategy Group. "On one side they face attackers that are highly skilled and automated, while the other side features a dynamic business environment where requirements for change are immediate and intolerant of extensive delays to accommodate security processes. Add in increasing external oversight and regulation, and the need for constant and granular monitoring of security state is imperative for security protection and risk management."

Security Manager 7.0 represents the latest innovative step from FireMon over the past year to fuse risk and posture management and to increase the intelligence and awareness provided to customers. The company was the first in the market last year to fully integrate real-time risk analysis with configuration, policy and change management, and then expanded that with a greater ability to analyze and visualize the behavior of network traffic. The introduction of continuous assessment into Security Manager greatly enhances organizational ability to quickly and efficiently manage changes, assess configurations and measure associated risks in real-time.

"While the old adage of 'learn from your mistakes' holds true in every job, the implications of even minor mistakes in security can have far reaching consequences -- and moreso the longer they go undetected," said Jody Brazil, president and CTO of FireMon. "And dangerous mistakes aren't limited to misconfiguration. Small, even valid, changes can have unexpected and unpredictable cascading effects farther along a network path. Additionally, overt focus on previous device and configuration errors can create tunnel vision that prevents oversight of other devices. Our goal with 7.0 was to provide a continuous and real-time posture 'reality check' that prevents errors in oversight by continuously assessing the infrastructure based on best practices."

Improving Organizational Posture

Security Manager 7.0 is about taking the power, intelligence and insight of the platform, and making it more immediate and actionable for both security and operations staff. By adding best practice-driven, continuous assessment, customers have a prioritized, single pane view of up-to-the-minute security posture that calls out issues to be addressed and their relative criticality. Additionally, with historical trending, operational ability to more effectively visualize, benchmark and manage change is greatly improved.

Leveraging FireMon's experience and expertise, the best practice knowledgebase comprises a library of hundreds of assessment controls to evaluate device configurations and network access policies. Security Manager 7.0 comes with a set of predefined assessments evaluating devices and networks against best practice and standard compliance regulations, as well as the ability for customer-defined assessments.

FireMon has further enhanced security and operations coordination with Policy Planner Version 3.0. It is the first product in the policy and risk management market to support the BPMN 2.0 standard, which has been adopted by industry leaders including Accenture, Capgemini, France Telecom, IBM, Oracle, Red Hat Software, SAP AG and Unisys. Enabling security management to be more easily integrated into business critical processes is vital for large organizations doing battle daily with deliberate and unintentional cyber attacks on their assets and information.

Visit FireMon during the RSA Conference at Booth 645 to preview Security Manager V7.0 and Policy Planner V3.0. Both will be available in early Q2 2013. Pricing starts at $20,000.

About FireMon
FireMon is the industry leader in providing enterprises, government and managed services providers with advanced security management solutions that deliver deeper visibility and tighter control over their network security infrastructure. The integrated FireMon solution suite -- Security Manager, Policy Planner and Risk Analyzer -- enables customers to identify network risk, proactively prevent access to vulnerable assets, clean up firewall policies, automate compliance, strengthen security throughout the organization, and reduce the cost of security operations. For more information, visit http://www.firemon.com.

Follow us on Facebook at http://www.facebook.com/FireMon, or Twitter at http://twitter.com/FireMon, or LinkedIn at http://www.linkedin.com/company/firemon, or on our blog at http://www.firemon.com/blog.

Add to Digg Bookmark with del.icio.us Add to Newsvine

More Stories By Marketwired .

Copyright © 2009 Marketwired. All rights reserved. All the news releases provided by Marketwired are copyrighted. Any forms of copying other than an individual user's personal reference without express written permission is prohibited. Further distribution of these materials is strictly forbidden, including but not limited to, posting, emailing, faxing, archiving in a public database, redistributing via a computer network or in a printed form.

@ThingsExpo Stories
“We're a global managed hosting provider. Our core customer set is a U.S.-based customer that is looking to go global,” explained Adam Rogers, Managing Director at ANEXIA, in this SYS-CON.tv interview at 18th Cloud Expo, held June 7-9, 2016, at the Javits Center in New York City, NY.
Just over a week ago I received a long and loud sustained applause for a presentation I delivered at this year’s Cloud Expo in Santa Clara. I was extremely pleased with the turnout and had some very good conversations with many of the attendees. Over the next few days I had many more meaningful conversations and was not only happy with the results but also learned a few new things. Here is everything I learned in those three days distilled into three short points.
Why do your mobile transformations need to happen today? Mobile is the strategy that enterprise transformation centers on to drive customer engagement. In his general session at @ThingsExpo, Roger Woods, Director, Mobile Product & Strategy – Adobe Marketing Cloud, covered key IoT and mobile trends that are forcing mobile transformation, key components of a solid mobile strategy and explored how brands are effectively driving mobile change throughout the enterprise.
What are the new priorities for the connected business? First: businesses need to think differently about the types of connections they will need to make – these span well beyond the traditional app to app into more modern forms of integration including SaaS integrations, mobile integrations, APIs, device integration and Big Data integration. It’s important these are unified together vs. doing them all piecemeal. Second, these types of connections need to be simple to design, adapt and configure...
Adobe is changing the world though digital experiences. Adobe helps customers develop and deliver high-impact experiences that differentiate brands, build loyalty, and drive revenue across every screen, including smartphones, computers, tablets and TVs. Adobe content solutions are used daily by millions of companies worldwide-from publishers and broadcasters, to enterprises, marketing agencies and household-name brands. Building on its established design leadership, Adobe enables customers not o...
SYS-CON Events announced today the Enterprise IoT Bootcamp, being held November 1-2, 2016, in conjunction with 19th Cloud Expo | @ThingsExpo at the Santa Clara Convention Center in Santa Clara, CA. Combined with real-world scenarios and use cases, the Enterprise IoT Bootcamp is not just based on presentations but with hands-on demos and detailed walkthroughs. We will introduce you to a variety of real world use cases prototyped using Arduino, Raspberry Pi, BeagleBone, Spark, and Intel Edison. Y...
Ask someone to architect an Internet of Things (IoT) solution and you are guaranteed to see a reference to the cloud. This would lead you to believe that IoT requires the cloud to exist. However, there are many IoT use cases where the cloud is not feasible or desirable. In his session at @ThingsExpo, Dave McCarthy, Director of Products at Bsquare Corporation, will discuss the strategies that exist to extend intelligence directly to IoT devices and sensors, freeing them from the constraints of ...
SYS-CON Events announced today that Sheng Liang to Keynote at SYS-CON's 19th Cloud Expo, which will take place on November 1-3, 2016 at the Santa Clara Convention Center in Santa Clara, California.
Technology vendors and analysts are eager to paint a rosy picture of how wonderful IoT is and why your deployment will be great with the use of their products and services. While it is easy to showcase successful IoT solutions, identifying IoT systems that missed the mark or failed can often provide more in the way of key lessons learned. In his session at @ThingsExpo, Peter Vanderminden, Principal Industry Analyst for IoT & Digital Supply Chain to Flatiron Strategies, will focus on how IoT de...
Complete Internet of Things (IoT) embedded device security is not just about the device but involves the entire product’s identity, data and control integrity, and services traversing the cloud. A device can no longer be looked at as an island; it is a part of a system. In fact, given the cross-domain interactions enabled by IoT it could be a part of many systems. Also, depending on where the device is deployed, for example, in the office building versus a factory floor or oil field, security ha...
24Notion is full-service global creative digital marketing, technology and lifestyle agency that combines strategic ideas with customized tactical execution. With a broad understand of the art of traditional marketing, new media, communications and social influence, 24Notion uniquely understands how to connect your brand strategy with the right consumer. 24Notion ranked #12 on Corporate Social Responsibility - Book of List.
Fact is, enterprises have significant legacy voice infrastructure that’s costly to replace with pure IP solutions. How can we bring this analog infrastructure into our shiny new cloud applications? There are proven methods to bind both legacy voice applications and traditional PSTN audio into cloud-based applications and services at a carrier scale. Some of the most successful implementations leverage WebRTC, WebSockets, SIP and other open source technologies. In his session at @ThingsExpo, Da...
Businesses are struggling to manage the information flow and interactions between all of these new devices and things jumping on their network, and the apps and IT systems they control. The data businesses gather is only helpful if they can do something with it. In his session at @ThingsExpo, Chris Witeck, Principal Technology Strategist at Citrix, will discuss how different the impact of IoT will be for large businesses, expanding how IoT will allow large organizations to make their legacy ap...
What happens when the different parts of a vehicle become smarter than the vehicle itself? As we move toward the era of smart everything, hundreds of entities in a vehicle that communicate with each other, the vehicle and external systems create a need for identity orchestration so that all entities work as a conglomerate. Much like an orchestra without a conductor, without the ability to secure, control, and connect the link between a vehicle’s head unit, devices, and systems and to manage the ...
What does it look like when you have access to cloud infrastructure and platform under the same roof? Let’s talk about the different layers of Technology as a Service: who cares, what runs where, and how does it all fit together. In his session at 18th Cloud Expo, Phil Jackson, Lead Technology Evangelist at SoftLayer, an IBM company, spoke about the picture being painted by IBM Cloud and how the tools being crafted can help fill the gaps in your IT infrastructure.
For basic one-to-one voice or video calling solutions, WebRTC has proven to be a very powerful technology. Although WebRTC’s core functionality is to provide secure, real-time p2p media streaming, leveraging native platform features and server-side components brings up new communication capabilities for web and native mobile applications, allowing for advanced multi-user use cases such as video broadcasting, conferencing, and media recording.
In this strange new world where more and more power is drawn from business technology, companies are effectively straddling two paths on the road to innovation and transformation into digital enterprises. The first path is the heritage trail – with “legacy” technology forming the background. Here, extant technologies are transformed by core IT teams to provide more API-driven approaches. Legacy systems can restrict companies that are transitioning into digital enterprises. To truly become a lea...
In his session at @ThingsExpo, Kausik Sridharabalan, founder and CTO of Pulzze Systems, Inc., will focus on key challenges in building an Internet of Things solution infrastructure. He will shed light on efficient ways of defining interactions within IoT solutions, leading to cost and time reduction. He will also introduce ways to handle data and how one can develop IoT solutions that are lean, flexible and configurable, thus making IoT infrastructure agile and scalable.
Cognitive Computing is becoming the foundation for a new generation of solutions that have the potential to transform business. Unlike traditional approaches to building solutions, a cognitive computing approach allows the data to help determine the way applications are designed. This contrasts with conventional software development that begins with defining logic based on the current way a business operates. In her session at 18th Cloud Expo, Judith S. Hurwitz, President and CEO of Hurwitz & ...
So, you bought into the current machine learning craze and went on to collect millions/billions of records from this promising new data source. Now, what do you do with them? Too often, the abundance of data quickly turns into an abundance of problems. How do you extract that "magic essence" from your data without falling into the common pitfalls? In her session at @ThingsExpo, Natalia Ponomareva, Software Engineer at Google, provided tips on how to be successful in large scale machine learning...