Home
Sitemap
Contact Us
|
These factors contribute to a broader issue – business continuity – that is taxing the IT infrastructure and challenging management on how to maintain 100% availability service levels.
Other factors contributing to application and systems downtime may be mitigated through use of a proactive, multi-tiered security prevention plan, including: Panic Patching A critical component to maintaining business continuity is preventing security threats from comprising critical systems. As new vulnerabilities are discovered and patches are released, organizations are challenged on how to best deploy these updates, which frequently require a re-boot as part of the patch 'fix'. The planned process becomes useless, however, when new critical security vulnerabilities are announced requiring immediate fixes. The challenge is to avoid panic patches, performing updates only on regularly scheduled intervals. ‘Zero-day’ Attack The window of time to remediate new vulnerabilities has shrunk to just hours, compared to months in the past. With this shrinking window, network security policies must include a component to provide immediate protection from new vulnerabilities as they are announced, to protect you on the ‘zero-day’ after such an announcement. This then enables you to perform only scheduled patch updates on your timeframe. eEye Digital Security's products optimize business continuity by greatly reducing the need for panic patches by protecting you against a 'zero-day' vulnerability attack. This is accomplished through Blink®, eEye's unique intrusion prevention system with the capability to assess and prevent an attack without relying on signature profiles to identify and stop malicious code. eEYE APPROACH eEye Digital Security has developed a systematic approach to address the challenges with maintaining business continuity. This vulnerability management workflow enables you to align eEye's innovative approach to network security to the real business risks facing your organization, including preventing unscheduled downtime and maintaining service levels associated with application and systems availability.Discover The critical first step in identifying, checking and tracking all of the servers, workstations and devices that are attached to your network. All systems and devices can contribute to security threats and ultimate downtime so must be identified and audited. Audit The linchpin of the entire vulnerability management process, which entails checking all operating systems, hardware configurations and application configurations. This phase must be fast, non-intrusive, customizable, centrally organized and remotely maintained. Delegate Upon completion of a given vulnerability assessment, remediation activities are prioritized and assigned to team members. Rules can be created to automatically delegate security events as tasks according to severity level, origin or vulnerability type. Remediate Now it is time to take action, and begin dialogues on how to best remediate the discovered vulnerabilities through a combination of technology, processes, policies and training. As vulnerabilities can impact the entire organization, this step will typically be a multi-departmental effort. Report Whether monitoring specific machine information, providing executive level views or communicating other important data, reporting is an important element that must be evaluated along with everything else. Adapt The final stage for this workflow comprises the ongoing review of data collected from each preceding stage, and modifying your work flows and security measures to continue increasing security, improving performance and reducing the likelihood of unauthorized security breach. SOLUTION ARCHITECTURE Consistent with eEye’s best practices approach to threat management and network security, the architecture of eEye’s business continuity solution is multi-tiered, starting with a comprehensive assessment and audit of all security threats on all network assets. This is accomplished through a Retina® Network Security scan.
|
