** Products > Network Risk Analysis with RedSeal SRM Security Risk Manager from RedSeal Systems drastically reduces the time needed to audit your network security infrastructure and get a clear view of any exposures. * Network Risk Analysis The first step for any risk analysis is collecting the relevant data, and for a large network that can be quite a job. The auditor needs to determine the routing topology, access rules, host population and specific vulnerabilities for each component. Once this information is obtained, methodical analysis is needed to determine real levels of risk for each system, bearing in mind the actual protection provided by the security infrastructure. The final stage is allocating resources to the most urgent issues, so that remedial work can be prioritised according to business needs. This adds up to a lot of work, and a full network risk analysis can be almost impossible without automation. * RedSeal SRM RedSeal Security Risk Manager (SRM) is a powerful new tool for assessing networks' security risks without overloading staff or budgets. It maps the network topology, audits the configuration of routers and firewalls and provides a range of graphical reports that help network managers allocate resources for remedial work. SRM can reduce both the costs and the time needed for a network risk assessment, and help ensure compliance with regulatory requirements. * Mapping the Intrastructure SRM starts by creating a topology diagram of the whole network, showing how traffic flows through the available connections. It does this automatically by collecting device configuration data - SRM can interpret the set-up files of all common infrastructure devices. At the same time, SRM audits these configuration settings, applying best-practice knowledge to uncover any unintended access or other errors. * Measuring the Risk Once SRM understands the structure of the network, it can determine the level of protection provided to critical servers by firewalls and other access control components. As well as the networking set-up, and its own built-in understanding of the relative importance of various services, SRM can also be loaded with specific vulnerability information from third-party products. It will then use its knowledge of the topology to show which of these represent real threats. Risk metrics are shown graphically, so that indirect threats (exploited by "hopping" from a vulnerable host) are readily apparent. * Mitigating Exposures RedSeal SRM prioritises vulnerabilities according to business value, internal policy and regulatory requirements. Its reports show security administrators where resources need to be applied in order to fix the most serious threats. This is of great importance in maintaining compliance with external regulations or internal policies - week in, week out. * Key Features SRM can get to work straight away: - automated collection of network configuration data from Cisco, Check Point, Juniper NetScreen, Foundry Networks, F5 and other devices - exportable network diagrams (Visio) - inbuilt threat library contains more than 28,000 entries on exposures and threats - accepts host vulnerability data from Qualys, nCircle, McAfee FoundStone, Nessus and others - available as a ready-to-run appliance or can be installed on a PC running Windows XP * About RedSeal RedSeal Systems is a privately held company based in California and founded in 2004. It specialises in security risk management applications. IDsec is a RedSeal Partner. * About Us IDsec is an independent company specialising in network security, and has provided penetration tests and intrusion detection systems since 1997. We can assess the security of your enterprise and advise on long-term protection: as we have for a range of blue-chip clients in the banking, telecoms, manufacturing and utility sectors. IDsec Limited 31-33 College Road, Harrow, Middlesex HA1 1EJ, United Kingdom T: +44 20 8861 2001 F: +44 20 8861 3433 W: www.idsec.co.uk All prices exclude VAT and are subject to confirmation. Copyright (C) 2008 IDsec Limited products/redseal/redseal.txt 20080715 (5.08)