This article can also be found in the Premium Editorial Download "Information Security magazine: Is your data safe from next-generation attackers?."
Download it now to read this article plus other related content.
Case Study: UTM Boosts Hospital's Immunity
|UTM Buyer's Guide|
Click here a representative list of companies that offer unified threat management appliances. For the most part, these are firewall/VPN appliances that integrate antivirus, antispam, intrusion detection/prevention and URL content filtering, typically as optional modules. Many offer SSL VPN and antispyware capabilities as well. (PDF).
Compiled by Neil Roiter
Indeed, focusing on a rapid incident response and multi-layered defense has served them well--so far. Recent experiences with malware are a good example.
"Spyware is largely a laptop issue now," Marsh says. "And worms and viruses haven't been much of a problem at all. At worst, we may have a 20-machine cleanup to deal with, but we're able to stop it before it gets out of hand."
In the end, Conrad says that a strong intrusion defense program is based on best practices that aren't always tied to spending; it's about having the right user policies and knowing how to make the most of the tools you have.
"It's all about a layered defense--using tools efficiently, training staffers to uncover threats, and hiring and keeping good people," he says. "An organization like ours can't prevent everything. But we can have a quick response that focuses on protecting the high-level, confidential data. That's out focus. I'll put it this way: I'm not losing any sleep," Conrad says.
About the Author:
Bill Brenner is a news writer with SearchSecurity.com. Send your thoughts on this article to email@example.com.
This was first published in June 2006