Guest post by Brian Fitch, Product Manager forIBM Security.
Mitigating risk while lowering cost is a daunting task and it requires deploying and managing security processes and technologies across your people, data, applications and infrastructure. Ideally these security technologies will have the ability to not only prevent attacks but also be able to provide a central reporting environment the IT department needs to validate that its technologies are indeed performing their tasks without interfering with the day to day work of the company�s employees. In the event of a breach, a single repository of security logs is also essential to incident response and determining root cause.
With the rise of Next Generation Firewalls (NGFW) and Next Generation Intrusion Prevention Systems (NGIPS), new options are available to consolidate protection technologies. There is promise in this area but IT departments should be cautious and ensure that the new technologies are, in fact, new and do not fall short in key requirements for keeping the business running. Furthermore, they should be confident that the products satisfy the key requirement of adding capability without complexity. Ideally, the lives of security professionals should get easier.
One of the ways to ensure that you are actually improving security without adding complexity is having a good capabilities around data analysis and security intelligence. The truth is that all of these technologies can generate lots of data and security teams might find themselves overwhelmed without automated tools to help. Your Security Information and Event Management (SIEM) product should be able to consume data from all of your security products being deployed. These technologies, when working together, will help improve protection against today and tomorrow�s security risks by providing the security professional with the data he or she needs to make critical decisions, and make them at the right time.
More about the author: Brian Fitch is Product Manager for IBM Security.He has been in the information security industry for over 12 years. Brian currently manages the GX IPS and XGS NG-IPS line of appliances. Prior to his product manager role, Brian was an Internet Security Systems (ISS) Systems Engineer for a decade.
Likes before 03/04/2016 - 0
Views before 03/04/2016 - 5479