Sourcefire on Monday took the wraps off a new enterprise strategy that blends multiple security functions under one management umbrella.
At the heart of strategy is Defense Center, a turnkey appliance that manages Sourcefire's intrusion prevention, network access control (NAC), network behavior analysis (NBA) and vulnerability assessment technology, said Michele Perry, chief marketing officer at the Columbia, Md.-based security vendor.
Sourcefire also is rolling out Master Defense Center, an uber-management platform that aggregates security and policy information from up to 10 Defense Centers.
After organizations set up network security policies, Defense Center scans network traffic for violations using NAC, NBA, and embedded Nessus and NMap vulnerability scanners. The combination of technologies gives organizations visibility into the state of the network before, during and after an attack, Perry said.
"We're focusing on enterprise customers that are building policy response rules for compliance monitoring and getting fed up with trying to make these products work together," she said.
From a government perspective, agencies have traditionally had difficulty managing at the enterprise level, said Steve Charles, co-founder of immixGroup, a McLean, Va.-based integrator.
"Now that government auditors are checking for compliance with FISMA [Federal Information Security Management Act], organizations are looking harder every year for solutions that provide management and visibility across an enterprise," Charles said.
Sourcefire's Realtime Network Awareness (RNA) product, which performs flow analysis, provides the NBA piece that's needed to detect anomalous behavior, according to Perry. "If RNA detects that devices are doing something funny, it can call for a surgical scan of those devices and pull that data," she said.
Sourcefire is also tweaking conventional NAC with an offering it calls network usage control (NUC). NUC is the post-connect aspect that determines what users can do on the network once they've connected, and it can be used for ongoing compliance monitoring.
"We don't believe that pre-connect NAC is what customers are looking for. What they're really trying to control is policy-based usage across the network," Perry said.
Mike Rothman, president of Security Incite, an Atlanta-based consulting firm, said Sourcefire's strategy is strong from a standpoint of addressing the growing enterprise market demand for integrated solutions.
"They've got the basis for a network security platform. They just have to fill it out," Rothman said. "For example, not having a firewall/VPN integrated into the solution is a pretty big hole."
|
Symantec's Code Red: The Law Enforcement/Anonymous E-Mail Exchange Law enforcement officials negotiated via e-mail for more than two weeks with an Anonymous group member trying to extort $50,000 from Symantec to keep stolen product code off the Internet. |
|
How To Sell IT Security Services To Your Customers Cyberattacks can cost a business thousands, even millions, of dollars, and can deal a death blow to some. Here's how IT solution providers can help guard against malicious attacks. |
|
Cybersecurity Experts: What They Know Could Scare You A recent report based on interviews with security experts in government, business and academia finds more than half in agreement that a worldwide arms race is taking place in cyberspace. |
 More
Slide Shows |
- Snort IDS Vendor Sourcefire Goes Public
- Sourcefire Predicts Q1 Earnings Miss
- Microsoft Shows Its Love In Valentine's Day Patch Release
- Worker Abuse Protest Targets Apple, Supplier Foxconn
- Sourcefire Gets Into Cloud Computing Security With Immunet Buy
- Sourcefire Takes Security Threat Analysis To New Level
- Insider Threats: The Next Frontier for Security Resellers and SMBs
- Complete Security and Your Bottom Line: Sophos, Value and the Channel
- Tough Threats, Tougher Security: How You Can Leverage New Solutions To Combat A “Targeted Attack” Landscape
- Dark Clouds Ahead: Why the Mid-Market Needs To Ramp Up Cloud Security and How You Can Help Them Get There
