Analytics
11/6/2013
08:15 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

EiQ Networks Offers To Help Organizations Assess Cyber Defense Readiness

Developed to provide organizations a preliminary assessment report of whether security gaps exist in their networks and systems

Acton, Mass., November 6, 2013 – EiQ Networks, a pioneer in simplified security, risk and compliance solutions, today announced the availability of a new offering to help organizations assess their cyber defense readiness. The Cyber Defense Readiness offering was developed to provide organizations a preliminary assessment report of whether security gaps exist in their network and systems.

Increasingly organizations of all sizes are becoming victims of cyber attacks on a daily basis. A majority of breaches go undetected due to the complexities involved in analyzing all security data across IT assets, inadequate security controls, and lack of actionable and timely security intelligence. According to a recent Ponemon study, it takes an average of 80 days for a company to discover a malicious breach and another four months to resolve it. Per Ernest &Young 2013 global information security survey organizations throughout the world continue to struggle to hire enough qualified staff to help ensure adequate cybersecurity. This lack of trained cyber security staff, coupled with antiquated compliance dominated security programs, and technologies, and the fact that it is becoming increasingly easier for hackers to attack corporate networks with new and sophisticated hacker tools, it is no wonder organizations of all sizes are exposed to cyber criminals and attacks. The 2013 Verizon DBIR illustrates that both large and SMB companies are equally prone to a cyber attack.

EiQ's Cyber Defense Readiness offering is based on the three critical pillars of a sound security program. Namely:

• Process: A set of processes and best practices developed and implemented based on industry standards such as SANS 20 Critical Security Controls

• Technology: A set of tools that provide immediate and comprehensive visibility into the "Threat" by utilizing Unified Situational Awareness that removes data silos and connect all the dots

• People: Trained, experienced Information Security professionals that monitor and assess an IT infrastructure 24 x7

By combining all three pillars, EiQ is able to deliver to an independent assessment of an organization's cyber defense readiness in an easy to view report.

"Companies require a holistic view of their security posture, but often times do not have enough qualified security professionals on staff or well-defined best practices based security program in place to help with cyber defenses," said Rob Aragao, vice president, services at EiQ Networks. "This offering provides an independent audit of their cyber defense readiness and it can be accomplished relatively quickly."

You can register for your EiQ Networks Cyber Defense Readiness assessment today at: http://offers.eiqnetworks.com/eiq-networks-cyber-defense-readiness-assessment

This new complimentary offering is part of EiQ Networks commitment to resolve the industry-wide challenges around traditional SIEM and log management acquisition, operational complexities and trained cyber security professional shortages. As such, further announcements will be forthcoming that will address the complexity and management burdens associated with SIEM products.

About EiQ Networks:

EiQ Networks, a pioneer in simplified security and compliance solutions, is transforming how organizations identify threats, mitigate risks and enable compliance. Our solution, SecureVue®, is a unified situational awareness platform that proactively detects incidents, minimizes "false positives" and delivers timely and actionable intelligence by simplifying often-complex interactions between security, risk and compliance. Through a single console, SecureVue provides a unified view of your entire IT infrastructure for proactive security and risk analysis, continuous monitoring, configuration auditing, compliance automation and context relevant search. For more information, visit: http://www.eiqnetworks.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading December Tech Digest
Experts weigh in on the pros and cons of end-user security training.
Flash Poll
Threat Intel Today
Threat Intel Today
The 397 respondents to our new survey buy into using intel to stay ahead of attackers: 85% say threat intelligence plays some role in their IT security strategies, and many of them subscribe to two or more third-party feeds; 10% leverage five or more.
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2014-4807
Published: 2014-11-22
Sterling Order Management in IBM Sterling Selling and Fulfillment Suite 9.3.0 before FP8 allows remote authenticated users to cause a denial of service (CPU consumption) via a '\0' character.

CVE-2014-6183
Published: 2014-11-22
IBM Security Network Protection 5.1 before 5.1.0.0 FP13, 5.1.1 before 5.1.1.0 FP8, 5.1.2 before 5.1.2.0 FP9, 5.1.2.1 before FP5, 5.2 before 5.2.0.0 FP5, and 5.3 before 5.3.0.0 FP1 on XGS devices allows remote authenticated users to execute arbitrary commands via unspecified vectors.

CVE-2014-8626
Published: 2014-11-22
Stack-based buffer overflow in the date_from_ISO8601 function in ext/xmlrpc/libxmlrpc/xmlrpc.c in PHP before 5.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code by including a timezone field in a date, leading to improper XML-RPC encoding...

CVE-2014-8710
Published: 2014-11-22
The decompress_sigcomp_message function in epan/sigcomp-udvm.c in the SigComp UDVM dissector in Wireshark 1.10.x before 1.10.11 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted packet.

CVE-2014-8711
Published: 2014-11-22
Multiple integer overflows in epan/dissectors/packet-amqp.c in the AMQP dissector in Wireshark 1.10.x before 1.10.11 and 1.12.x before 1.12.2 allow remote attackers to cause a denial of service (application crash) via a crafted amqp_0_10 PDU in a packet.

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Now that the holiday season is about to begin both online and in stores, will this be yet another season of nonstop gifting to cybercriminals?