Analytics
11/6/2013
08:15 PM
Dark Reading
Dark Reading
Products and Releases
Connect Directly
RSS
E-Mail
50%
50%

EiQ Networks Offers To Help Organizations Assess Cyber Defense Readiness

Developed to provide organizations a preliminary assessment report of whether security gaps exist in their networks and systems

Acton, Mass., November 6, 2013 – EiQ Networks, a pioneer in simplified security, risk and compliance solutions, today announced the availability of a new offering to help organizations assess their cyber defense readiness. The Cyber Defense Readiness offering was developed to provide organizations a preliminary assessment report of whether security gaps exist in their network and systems.

Increasingly organizations of all sizes are becoming victims of cyber attacks on a daily basis. A majority of breaches go undetected due to the complexities involved in analyzing all security data across IT assets, inadequate security controls, and lack of actionable and timely security intelligence. According to a recent Ponemon study, it takes an average of 80 days for a company to discover a malicious breach and another four months to resolve it. Per Ernest &Young 2013 global information security survey organizations throughout the world continue to struggle to hire enough qualified staff to help ensure adequate cybersecurity. This lack of trained cyber security staff, coupled with antiquated compliance dominated security programs, and technologies, and the fact that it is becoming increasingly easier for hackers to attack corporate networks with new and sophisticated hacker tools, it is no wonder organizations of all sizes are exposed to cyber criminals and attacks. The 2013 Verizon DBIR illustrates that both large and SMB companies are equally prone to a cyber attack.

EiQ's Cyber Defense Readiness offering is based on the three critical pillars of a sound security program. Namely:

• Process: A set of processes and best practices developed and implemented based on industry standards such as SANS 20 Critical Security Controls

• Technology: A set of tools that provide immediate and comprehensive visibility into the "Threat" by utilizing Unified Situational Awareness that removes data silos and connect all the dots

• People: Trained, experienced Information Security professionals that monitor and assess an IT infrastructure 24 x7

By combining all three pillars, EiQ is able to deliver to an independent assessment of an organization's cyber defense readiness in an easy to view report.

"Companies require a holistic view of their security posture, but often times do not have enough qualified security professionals on staff or well-defined best practices based security program in place to help with cyber defenses," said Rob Aragao, vice president, services at EiQ Networks. "This offering provides an independent audit of their cyber defense readiness and it can be accomplished relatively quickly."

You can register for your EiQ Networks Cyber Defense Readiness assessment today at: http://offers.eiqnetworks.com/eiq-networks-cyber-defense-readiness-assessment

This new complimentary offering is part of EiQ Networks commitment to resolve the industry-wide challenges around traditional SIEM and log management acquisition, operational complexities and trained cyber security professional shortages. As such, further announcements will be forthcoming that will address the complexity and management burdens associated with SIEM products.

About EiQ Networks:

EiQ Networks, a pioneer in simplified security and compliance solutions, is transforming how organizations identify threats, mitigate risks and enable compliance. Our solution, SecureVue®, is a unified situational awareness platform that proactively detects incidents, minimizes "false positives" and delivers timely and actionable intelligence by simplifying often-complex interactions between security, risk and compliance. Through a single console, SecureVue provides a unified view of your entire IT infrastructure for proactive security and risk analysis, continuous monitoring, configuration auditing, compliance automation and context relevant search. For more information, visit: http://www.eiqnetworks.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Flash Poll
Current Issue
Cartoon
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-0103
Published: 2014-07-29
WebAccess in Zarafa before 7.1.10 and WebApp before 1.6 stores credentials in cleartext, which allows local Apache users to obtain sensitive information by reading the PHP session files.

CVE-2014-0475
Published: 2014-07-29
Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable.

CVE-2014-0889
Published: 2014-07-29
Multiple cross-site scripting (XSS) vulnerabilities in IBM Atlas Suite (aka Atlas Policy Suite), as used in Atlas eDiscovery Process Management through 6.0.3, Disposal and Governance Management for IT through 6.0.3, and Global Retention Policy and Schedule Management through 6.0.3, allow remote atta...

CVE-2014-2226
Published: 2014-07-29
Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows man-in-the-middle attackers to obtains sensitive information via unspecified vectors.

CVE-2014-3020
Published: 2014-07-29
install.sh in the Embedded WebSphere Application Server (eWAS) 7.0 before FP33 in IBM Tivoli Integrated Portal (TIP) 2.1 and 2.2 sets world-writable permissions for the installRoot directory tree, which allows local users to gain privileges via a Trojan horse program.

Best of the Web
Dark Reading Radio