Situational Awareness

Challenge

The implementation of a situational awareness and continuous monitoring program is becoming an essential function and, in some cases a mandate, for IT Security organizations today. "Situational awareness" as defined by a Chief Information Security Officer (CSO) working group, "is having access to near real-time information that accurately describes the security posture of the organization with drill down capability to a single actor, system or application. Information includes sufficient knowledge about: threats, vulnerabilities, resources/assets, and the significance of the interactions between the three components." To accomplish a strategic level of enterprise security risk management, a top-down aggregation of existing security tools and attainable datasets is required. The correlation and analysis of those data provides insight into an organization's security risk posture. Awareness is raised through alerts, metrics, summary, details, and narrative reporting available in tailored dashboard views.
 

Solution

Most security solutions today provide a tactical view into specific areas of the enterprise, focusing on people, process, asset, or data. RiskVision correlates data from existing security and IT tools, combine that with business, compliance, and risk data to deliver a comprehensive and risk adjusted understanding of security posture, at the enterprise wide "big picture" level. With a broad range of out-of-the-box connectors to popular security and IT management systems and strong automation technologies based on open standards such as SCAP, RiskVision can automate massive amount of security data in real-time to create true situational awareness intelligence. In addition, RiskVision makes it possible for organizations to move beyond the limitations of sampling and to gain a higher level of assurance and risk reduction by automating the testing and monitoring across all accessible assets.
 

Top of Page