ZDNet UK


Skip to Main Content

  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Jobs
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


Security threats Toolkit

Pre-emptive security prompts alarms

Ruby Bayan

Published: 14 Jun 2004 11:20 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Close the gap between prediction and mitigation
According to Stan Quintana, VP of managed security services at AT&T, "the premise behind any product/tool that offers analysis and protection is (a) how good and predictive the intelligence being gathered is, and (b) the velocity in which that information can be turned into a mitigation solution."

AT&T Internet Protect Service boasts true predictive information on worms, viruses, D/DoS, and other types of attacks that develop in the network. AT&T notifies its clients within minutes of detecting malicious activity and cyberattacks, and recommends necessary actions to mitigate the event before damage sets in.

"The advantage of having predictive information lies in the ability to quickly turn this information into security rules that can mitigate the security event on a real-time basis," said Quintana.

More important, Quintana said, customers should also have systemic policy management practices in place so that the security infrastructure is current with the changing face of the risk environment. "In addition, having overall management and monitoring, and incident management capabilities, are critical to ensure that the security landscape is addressed on a holistic end-to-end basis," he advised.

Don't forget the employee desktop
"As the effectiveness of network and perimeter security diminishes, hackers have begun to utilise the employee, which can be the weakest link in an organisation's security infrastructure," according to Dan Hubbard, director of product and systems analysis at Websense. Therefore, any complete security strategy for organisations should include protection at the employee desktop level, he said.

Hubbard recommended the Websense Enterprise Client Policy Manager (CPM), an add-on module to the Websense Enterprise content filtering suite, which delivers zero-day protection against unknown security threats and prevents the execution of unauthorised applications.

For reporting, Hubbard proposed Websense Enterprise Explorer for CPM, an interactive, Web-based forensics and analytics tool that enables IT/business managers to quickly detect malicious activity such as spyware, Trojan horses, and hacking tools before antivirus signatures are available.

Next

Previous

1 2 3


  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with Konica

Did you find this article useful?
158 out of 326 people found this useful


In association with Intel

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats



Company/Topic Alerts

Create a new alert from the list below:






Related Jobs

Information Security Incident Handler

Ingenium Analysts

Information Security Officer

Sentry Posts Blog

Police seize phone-gun

Italian police have seized a gun disguised as a mobile phone, according to a report on Gizmodo. The phone can hold four bullets, and is powerful enough to kill somebody. Gizmodo... More

3 comments

Gov't loses a PC a week

The government averaged losing one PC per week over the last year, according to figures collated by the Conservatives. A Friday report by the Press Association said that Tory front-bencher... More

1 comment

The Technological Singularity

Are we approaching a point when machines may wake up and become self or seemingly self aware? Vernor Vinge in 1993 seemed to think so. He refered to this event as the "technological... More

2 comments

Featured Oracle Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

See All White Papers