advanced analytics to attain risk insights and reduce threat
DESCRIPTION
Enterprises today are dealing with “it’s not a matter of if you will be breached but a matter of when.” Executives are taking an increased interest in their organization’s security posture and the impact on business goals and objectives—their job depends on it. Because of this, there is a need to quickly detect, prioritize and remediate information technology risks. This presentation highlights how security professionals can leverage security controls and analytics to gain more visibility and business context, in order to protect sensitive data from breaches, vulnerabilities and threats.TRANSCRIPT
1
Delivering Security Analytics to Reduce Risk Exposure
| Smart Metrics, Intelligent Decisions
Agenda Introductions About Brinqa and Tripwire Security Analytics Integrated Security Analytics Solution Use Cases Demo
| Smart Metrics, Intelligent Decisions
Software Company, Founded in 2008 – HQ in Austin, TX, U.S.A
Global Presence, Worldwide Channels, Rapid Growth
Addresses – The Biggest Challenge in Risk Analysis
Reduce your risk exposure by assessing, prioritizing, responding, and
communicating the most critical and relevant risks to your business?
Proven Technology – Innovative Solutions
Trusted by Fortune 100 companies, Unified Analytics Platform
Brinqa Overview
4
$150M+Annual Sales
400+Employees
$$$Profitable
9000+Customers
in 96 countries
Tripwire Delivers Advanced Threat Protection, Security and Compliance Solutions
5
Configuration Management
File Integrity Monitoring
Vulnerability Management
LogIntelligence
Tripwire Advanced Threat Protection
Reliable | Business Context | Automation | Integration
Detecting indicators of breach, compromise and vulnerability
| Smart Metrics, Intelligent Decisions
Why Security Risk Analytics?
| Smart Metrics, Intelligent Decisions
Security Risk Analytics
“Enterprises can achieve significant savings when using analytics to stop crime and security infractions”
“Security intelligence with analytics offers real results.”
– Avivah Litan, Gartner Research
– Forrester Research
93% 83% 77%Reported a decrease in security incidents
Reported swifter trouble-shooting
Experienced reduction in fraud
| Smart Metrics, Intelligent Decisions
Key Challenges in Analyzing Security Risk
Disparate security risk inventories
Manual, inconsistent data aggregation and correlation
Subjective, non-standard risk measurement
Lack of business context based reporting
| Smart Metrics, Intelligent Decisions
Security Risk Solution
| Smart Metrics, Intelligent Decisions
Integrated Solution
Asset Discovery and Inspection (VIA Agent & Agentless; Local & Remote Methods)
• Enable Aligned & Risk-based Security
• Deliver Critical Security Controls
• Provide Flexible & Scalable Deployment Options
| Smart Metrics, Intelligent Decisions
Determine business impact of vulnerabilities and incidents
Prioritize incidents based on impact and importance
Quantitative analysis to determine business cost of vulnerabilities and incidents
Normalization of vulnerabilities and incidents from different sources
Analyze and evaluate incident priorities based on organizational goals and mandates
Customer Benefits 65% reduction Issue/incident remediation efforts
55% reduction Assessment efforts
70% reductionInformation gathering efforts
| Smart Metrics, Intelligent Decisions
Case Studies
| Smart Metrics, Intelligent Decisions
Business DriverLarge number (1M+) of vulnerabilities reported daily from the scanners scanning infrastructure supporting internal and external applications. The Information security team have been mandated with the following
• Identify the key vulnerabilities that pose the highest risk to the Business Application
• Reduce remediation time of App and Infrastructure teams by highlighting the most important vulnerabilities
• Provide visibility to the management (VP, Director) by providing flexible and easier reporting on vulnerabilities
Brinqa Solution• Holistic asset and application inventory with a
complete hierarchy providing a view where Process Application Physical Server Virtual IP
• Consolidation and remediation by Application instead of individual vulnerabilities
• Risk analysis using the application and business process context to highlight key vulnerabilities impacting assets
• Central warehouse to report on all issues and risks
• Closed loop remediation for host vulnerabilities
Fortune 10 Global Technology Firm
Customer ProfileFortune 10 global technology company
| Smart Metrics, Intelligent Decisions
Business DriverThe key business requirements are• Holistic view of Risk reported across various
areas including – Technology Regulatory User Developed Applications Internal Audit
• Costly labor spent on fixing issue. The driver was to prioritize issues in various areas based on risk and remediate them
• Flexible and easy reporting on top risks impacting each area to management (COO, CTO, Director, VP etc.)
Brinqa Solution• Centralized inventory to capture information
from various areas including asset inventory of complete technology stack , Business area to audit and regulatory information mapping
• Flexible Risk Analysis on information captured in each area and reporting based on various areas
• Simulation analysis to produce reports based on scenarios
Global Financial Institution
Customer Profile• Major global investment bank based
in Europe is one of the top 5 banks in the world.
• 800 critical applications, 17000 Servers, 2300 Databases
| Smart Metrics, Intelligent Decisions
DEMO
| Smart Metrics, Intelligent Decisions
Contact Information: