Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Analytics

5/30/2012
01:45 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

FireMon Delivers Security Posture Management

Security Manager 6.0 combines risk analysis with configuration management, enforcement, and auditing of network devices

OVERLAND PARK, Kan., May 30, 2012 – FireMon, the leading provider of security management and risk analysis solutions, today announced FireMon Security Manager 6.0. This major upgrade represents the industry’s first security policy and posture management solution that fully integrates comprehensive risk analysis with configuration management, enforcement and auditing of network devices like firewalls, routers, switches and load balancers. This gives enterprises, government agencies and managed security service providers (MSSPs) unparalleled visibility to understand the scope of business vulnerability and prioritize the proactive defense of critical assets, while maintaining a high confidence that their security infrastructure is free of human error or incompatibilities between policies and protection.

A surge in conversation and excitement around next-generation firewalls (NGFWs) and security infrastructures has overshadowed a shocking lack of visibility into how change – from software patches to access changes to new system deployments – has a domino effect that can open up silent vulnerabilities across a network. Security operations personnel are challenged daily to understand the interdependencies in a complex morass of legacy and new devices, and software, and the implications and potential for error they represent. A recent example of this occurred last month, when Medicaid and social security information of 780,000 citizens in Utah were exposed due to misconfiguration and ineffective access control.

Even for those companies that have implemented some level of policy/configuration management, the data deluge and ability to trace the paths and assets that are at risk remain a challenge for many. The solution lies in the ability to automatically identify, assess and remediate the impact of change or misconfiguration on security policy and controls in real-time, and combine that with mechanisms that integrate comprehensive risk analysis to provide quantifiable and actionable intelligence to focus efforts on the most critical issues.

FireMon Security Manager provides policy and configuration management, enforcement and auditing of network devices such as firewalls, routers, switches and load balancers, while monitoring for and alerting on configuration changes. Security Manager also assesses current configuration settings and audits these against best practices and compliance standards – and provides extensive options for remediating configuration issues.

With the addition of a new patented risk analysis engine, Security Manager can now analyze the accessibility of any vulnerabilities from threat sources, measuring the impact, depth and risk of a potential attack. The integration allows Security Manager to evaluate, visualize and simulate attack paths throughout the network to assist security teams to quantify risk and prioritize remediation. In addition to traditional vulnerabilities detected by popular vulnerability assessment (VA) scanners, Security Manager can also incorporate penetration test results with Rapid7 Metasploit and factor proven exploits into its risk scoring. The risk analysis engine technology, obtained through the April 2011 acquisition of MIT Lincoln Labs startup, Saperix Technologies, has been deployed for more than a decade, is in use in demanding civilian and DoD environments, and is the fastest and most scalable automated risk analysis technology on the market today.

“The growing complexity of networks and the increasing sophistication of adversaries have driven imperatives for better intelligence and focus in network security management,” said Jody Brazil, President and CTO of FireMon. “Any network change – from M&A integration to user, application or access changes to software updates – can cause issues from system failure to exposure of critical assets. FireMon’s hallmark has been its ability to understand and manage the implications of change in large organizations. Now, with the ability to rapidly analyze and map specific risk scenarios, we can enable security teams to better plan for change, and more effectively prioritize proactive efforts to defend their critical information assets.”

FireMon Security Manager has set the standard in the industry as the most scalable platform for security policy and posture management. Its robust, distributed architecture deploys a single application server for central management and reporting. With remote, agent-less data collectors for additional monitoring capacity, Security Manager can monitor thousands of devices in a single deployment and supports a broad range of security and network devices. Security Manager’s role-based access permissions model allows for fine-grain control of user access permissions. Security Manager’s open architecture and online Nexus community enable users to create and extend analysis capabilities to meet any compliance reporting objectives or model policy impact based on each customer’s specific business needs.

About FireMon FireMon provides enterprises and government with security management software that gives them deeper visibility and tighter control over their network security infrastructure. The FireMon solution set – Security Manager, Policy Planner, Risk Analyzer and BackBox – enables customers to identify network risk, proactively eliminate those vulnerabilities and strengthen security throughout the organization, and reduce the cost of security operations and compliance. Together, they create a highly-effective and consistent solution for efficiently managing security operations. For more information, visit http://www.firemon.com.

Follow us on Facebook at http://www.facebook.com/FireMon, or Twitter at http://twitter.com/FireMon, or LinkedIn at http://www.linkedin.com/company/firemon, or on our blog http://www.firemon.com/blog.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: We need more votes, check the obituaries.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2021-3272
PUBLISHED: 2021-01-27
jp2_decode in jp2/jp2_dec.c in libjasper in JasPer 2.0.24 has a heap-based buffer over-read when there is an invalid relationship between the number of channels and the number of image components.
CVE-2021-3317
PUBLISHED: 2021-01-26
KLog Server through 2.4.1 allows authenticated command injection. async.php calls shell_exec() on the original value of the source parameter.
CVE-2013-2512
PUBLISHED: 2021-01-26
The ftpd gem 0.2.1 for Ruby allows remote attackers to execute arbitrary OS commands via shell metacharacters in a LIST or NLST command argument within FTP protocol traffic.
CVE-2021-3165
PUBLISHED: 2021-01-26
SmartAgent 3.1.0 allows a ViewOnly attacker to create a SuperUser account via the /#/CampaignManager/users URI.
CVE-2021-1070
PUBLISHED: 2021-01-26
NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an un...