|
|
Feel Good About Your Network
|
|
IDsec Limited
31-33 College Road
Harrow, Middlesex
HA1 1EJ
United Kingdom
(Map)
T: 020 8861 2001
F: 020 8861 3433
www.idsec.co.uk
Copyright © 2008
IDsec Ltd
5.08
|
|
|
|
|
|
|
|
|
 |
Security Risk Manager from RedSeal Systems drastically reduces the
time needed to audit your network security
infrastructure and get a clear view of any exposures.
|
|
|
|
|
The first step for any risk analysis is collecting the relevant data,
and for a large network that can be quite a job. The auditor needs to
determine the routing topology, access rules, host population and
specific vulnerabilities for each component.
Once this information is obtained, methodical analysis is needed to
determine real levels of risk for each system, bearing in mind the
actual protection provided by the security infrastructure.
The final stage is allocating resources to the most urgent issues, so
that remedial work can be prioritised according to business needs.
This adds up to a lot of work, and a full network risk analysis can
be almost impossible without automation.
|
|
|
RedSeal Security Risk Manager (SRM) is a powerful new tool for
assessing networks' security risks without overloading staff or
budgets.
It maps the network topology, audits the configuration of routers
and firewalls and provides a range of graphical reports that help
network managers allocate resources for remedial work.
SRM can reduce both the costs and the time needed for a network risk
assessment, and help ensure compliance with regulatory requirements.
|
|
| Mapping the Intrastructure |
|
|
|
SRM starts by creating a topology diagram of the whole network,
showing how traffic flows through the available connections.
It does this automatically by collecting device configuration data -
SRM can interpret the set-up files of all common infrastructure devices.
At the same time, SRM audits these configuration settings, applying
best-practice knowledge to uncover any unintended access or other errors.
|
|
|
Once SRM understands the structure of the network, it can determine
the level of protection provided to critical servers by firewalls and
other access control components.
As well as the networking set-up, and its own built-in understanding
of the relative importance of various services, SRM can also be
loaded with specific vulnerability information from third-party
products. It will then use its knowledge of the topology to show
which of these represent real threats.
Risk metrics are shown graphically, so that indirect threats
(exploited by “hopping” from a vulnerable host) are readily apparent.
|
|
|
RedSeal SRM prioritises vulnerabilities according to business value,
internal policy and regulatory requirements. Its reports show security
administrators where resources need to be applied in order to fix the
most serious threats.
This is of great importance in maintaining compliance with external
regulations or internal policies - week in, week out.
|
|
|
SRM can get to work straight away:
-
automated collection of network configuration data from
Cisco, Check Point, Juniper
NetScreen, Foundry Networks, F5 and other devices
-
exportable network diagrams (Visio)
-
inbuilt threat library contains more than 28,000 entries
on exposures and threats
-
accepts host vulnerability data from Qualys, nCircle,
McAfee FoundStone, Nessus and others
-
available as a ready-to-run appliance or can be
installed on a PC running Windows XP
|
|
|
RedSeal Systems is a privately held company based in California and
founded in 2004. It specialises in security risk management applications.
IDsec is a RedSeal Partner.
|
|
