SANTA CLARA, CA--(Marketwire - Feb 5, 2013) - RedSeal Networks, the leader in security risk management for cyber attack prevention, announced today that it is shipping the latest version of the RedSeal Platform to protect companies and government agencies from attacks across the network. Companies are especially in vulnerable network "dark space" -- the up to 18% of network infrastructure that is unmanaged, unmonitored, and unseen by security tools because administrators don't know it exists. With RedSeal 6.5, customers can now get a complete security risk map, including all infrastructure, to reduce the attack risk surface and properly prioritize risk mitigation strategies. RedSeal now extends its continuous monitoring and security risk management capabilities to include over 60 new features such as support for bring your own device (BYOD) initiatives, deeper risk metrics and SIEM integration.
Network security dark space is defined as any network infrastructure that doesn't appear in the "database of record" or "golden store" of configuration data, including firewalls, routers, proxies, load balancers, as well as endpoints and hosts. In a highly complex network with tens of thousands of nodes, this represents a massive challenge for organizations. RedSeal estimates that most organizations are only monitoring as little as 82% of their network, leaving up to 18% as network dark space -- left exposed simply because it's not on their radar.
"In an ideal world, CISOs, CIOs, IT security directors and administrators can take a look at their network and close any gaps that expose vulnerabilities, but the reality is, most organizations have 'known unknowns' -- assets that are out of sight, not properly monitored or tracked, but important due to their downstream impact on other assets that are visible," said Parveen Jain, president and CEO of RedSeal Networks. "You can't protect what you can't see. RedSeal 6.5 helps our customers find the unknown parts of their network and visualize risk to proactively prevent cyber-attacks."
The RedSeal 6.5 Platform
RedSeal 6.5 adds over 60 new features to the platform in order to meet the rigorous requirements of some of the world's largest networks. First, RedSeal is extending its security risk management capabilities to visualize and monitor access policy for wireless network controllers. Support for wireless network controllers extends visibility to constantly changing and elusive Wi-Fi endpoints.
With the rise of BYOD initiatives it can be critical to monitor additional endpoints and ensure that access to critical network assets is monitored. According to a January 2013 report from Osterman Research that surveyed 112 North American companies and government organizations with over 500 employees, one-third of organizations that offer Wi-Fi access to guests do not have a dedicated guest network, allowing non-employees to access the same corporate assets as employees. The report also found that while 82% of companies cite security as a major concern around BYOD, nearly 30% have no security software or protocols in place around their BYOD program.
"Network security assurance is a process that benefits from methodical, recurring sweeps for vulnerabilities and gaps," said Michael Tennefoss, Aruba Networks' Vice President of Strategic Partnerships. "Aruba's Mobile Virtual Enterprise (MOVE) architecture, with ClearPass Access Management system, delivers best-in-class BYOD and Wi-Fi security that is complemented by RedSeal's on-going compliance monitoring. Accessing data seamlessly from Aruba's Wi-Fi infrastructure enables RedSeal to obtain a more complete topology map and risk model for faster detection of security risks and gaps in security posture."
In addition to wireless network support, RedSeal 6.5 adds deeper risk analysis and metrics for proactive mitigation of threats and reactive damage assessment analysis in the event of an attack. Analytics for proactive threat mitigation include Common Configuration Enumeration (CCE) scores to identify host configuration risk and in addition to vulnerability scores to identify the highest risk systems. Damage assessment analysis defines the scope of a compromise and helps rationalize the extent of potential impact for IT response teams.
RedSeal 6.5 also includes extensive integration into three of the leading Security Information and Event Management (SIEM) solutions. The integration bridges the divide between proactive and reactive security systems with an additional level of network context and event filtering for faster response to critical incidents and a reduction in event overload. RedSeal Networks currently supports leading SIEM platforms, including HP ArcSight, McAfee Enterprise Security Manager, and IBM Q1.
"Throughout my many years in information security, I am continuously surprised by the obvious vulnerabilities within most networks. The recent explosion of BYOD only serves to extend the potential attack surface, adding risk and complexity," said Jon Oltsik, senior principal analyst at ESG. "Thankfully, we have seen some strong innovation in risk management recently, making it easier than ever for security practitioners to visualize their networks, identify vulnerabilities and enhance threat prevention."
The RedSeal 6.5 Platform is available immediately.
About RedSeal Networks, Inc.
RedSeal Networks is the leading provider of security risk management solutions for cyber attack prevention. Using patented network visualization and predictive threat modeling, RedSeal provides the most complete picture of risk from cyber attacks. The RedSeal Platform delivers the industry's most powerful network security insights, illuminates network security dark space and enables enterprises to continuously monitor controls. The world's largest government and commercial organizations use RedSeal to prioritize vulnerability remediation efforts, dramatically cut compliance costs and optimize their security architectures.
For more information, visit RedSeal at www.redsealnetworks.com