Security Management Strategies for the CIOAccess "Security information management review: Security Threat Manager 3.0"
This article is part of the April 2005 issue of Spotlight on the incident response hot seat
Security Threat Manager 3.0 OpenService Price: Starts at $50,000 Security Threat Manager 3.0 @exe Gleaning security intelligence from disparate sources means slogging through endless logs from firewalls, IDSes, routers, switches and other devices in numerous formats for nuggets of critical information. OpenService's Security Threat Manager (STM) 3.0 distills this mass of raw data into actionable threat information in real time. STM gathers and normalizes data, correlates the various inputs, and ranks the criticality of security events. It assembles a table with accumulated behavior data across the entire range of sources and "builds the case" for elevation to event criticality, spawning a predetermined action, such as an e-mail alert, or triggering a script for automated response. We were impressed with STM's functionality, but don't expect out-of-the-box results. This is a complex product and needs to be configured for specific enterprise environments and corporate security policies. The STM engine requires significant tuning, and OpenService requires ... Access >>>
Access TechTarget
Premium Content for Free.
What's Inside
Features
-
-
Secure Reads: The Executive Guide to Information Security
Read a review of the book, The Executive Guide to Information Security: Threats, Challenges, and Solutions.
-
Security information management review: Security Threat Manager 3.0
A review of Security Threat Manager 3.0
-
Hot Pick: Sentryware's HIVE 3.0
HIVE 3.0
-
Warning Lights
Evolving risk dashboards will tell how secure you are and when something's wrong.
-
Rights of Passage
Our tests found that most endpoint security products will enforce policy and network access. Their differences are in the details.
-
Secure Reads: The Executive Guide to Information Security
-
-
Intrusion Prevention: Top Layer's Attack Mitigator IPS 5500
Attack Mitigator IPS 5500
-
Antivirus: Kaspersky Anti-Virus Business Optimal 5.0
Kaspersky Anti-Virus Business Optimal 5.0
-
Recent Releases: Security product briefs, April 2005
Learn about the information security products released in April 2005.
-
Ready For Takeoff
Cutting costs was the only way to keep United Airlines flying high. Rich Perez's answer was to rebuild the network.
-
Damage Control
ChoicePoint's Rich Baich faced the perfect storm: a huge security breach, intense media attention and a shareholder revolt. What he needed was an incident response plan to get him out of the hot seat.
-
Intrusion Prevention: Top Layer's Attack Mitigator IPS 5500
-
Columns
-
On The Radar
It Pays to Plan
-
Perspectives: Is HIPAA DOA?
The long-awaited privacy law's impact is disappointing compared to other security regulations.
-
Ping: James Duffy
(ISC)2's James Duffy
-
Editor's Desk: Identity anxiety
FDIC for Identities
-
On The Radar
More Premium Content Accessible For Free
Next-generation firewalls play by new rules
E-Zine
Firewalls started their journey to the next generation at about the same time as the Star Trek TV series. While the products have advanced with ...
Developing your endpoint security management transition plan
E-Handbook
This TechGuide will help you develop your endpoint security management transition plan. Articles focus on overcoming the challenges of Web-based ...
Unlock new pathways to network security architecture
E-Zine
Network security architecture is showing its age at many organizations. With new technology, different data types, and use of multi-generations of ...