RE: Risk management products

You have to check out The Gideon Group's SecureFusion
(http://www.thegideongroup.com/securefusion-suite.asp) product. Its been
used at top U.S banks, gov't dept, healthcare organizations, and even major
retail groups. It uses agent less authenticated/ non-authenticated
techniques to perform policy gap analysis, configuration assessments,
control based risk assessments, wireless assessments, asset management,
compliance based assessments, and more. In my first introduction to the
product, roughly 1.5 years ago, it went head to head with McAfee's Citadel,
Symantec's Compliance Center (old Bindview), and Cambia's risk assessment
product and won great reviews and ultimately a contract at the place of work
I was at (top 10 U.S bank). The great thing about SecureFusion is that its
based up SOA, therefore it can integrate with any server/ device/ appliance
b/c its not platform dependent. Its also module based so it fulfills a lot
of needs, as previously mentioned. Preventsys is a great product, but it
relies completely on the capabilities of the underlying scanning component,
which is not all inclusive within the product.

Hope this helps.

Tony UcedaVélez, CISA, GIAC
VerSprite, LLC
(office) 678.938.3434
(email) tonyuv@xxxxxxxxxxxxx
(web) www.versprite.com



-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On
Behalf Of offset
Sent: Friday, January 19, 2007 11:52 AM
To: security-basics@xxxxxxxxxxxxxxxxx
Subject: Risk management products


Greetings and salutations,

I'd be interested in opinions regarding the various Risk
Management/Aggregation products/tools out there.

products such as:

Preventsys
Skybox

Any others that I am missing?

Looking for the following characteristics (high level):
* Ability to pull in raw data from many security tools
* Ability to normalize threats from many different sources
* Ability to add custom risk weightings by network, os, platform, etc.

--
offset@xxxxxxxxxxxxxxxx
--
Got Tor? Support anonymous Internet communication. http://tor.eff.org/

Relevant Pages

  • Re: Potentially goodbye
    ... Risk can only be managed, ... proxy purchases by my offshore banks (no problem doing so either. ... that the very institutions that make up life could possibly cease to ... That's the reason that they still EXIST, ...
    (rec.martial-arts)
  • Global capitalism teeters on the brink
    ... Canadian central banks to stabilize the situation has been swamped by ... experts talked about the risk of the financial ... fluctuation of a world economy that's prone to intermittent volatility ... Central banks, especially the Greenspan Fed, wanted to reinflate their ...
    (soc.culture.cuba)
  • Re: "Public Risk, Private Gain" - Republicans create a whopping mess that the American taxpayer
    ... Public Risk, Private Gain ... Stearns and open its lending window to investment banks, ... Capital and even venerable investment banks like Bear Stearns. ...
    (soc.retirement)
  • Re: Leave bank shareholders with nothing, or they can bail themselves out
    ... Nationalizing the banks would indeed wipe out investors. ... Confessions of a risk manager ... and sovereign-wealth funds were all looking to invest in assets. ... from my own risk managers forewarning me that a senior trader was about to ...
    (misc.news.internet.discuss)
  • Re: Bankers are not getting enough punishment for their obscene greed
    ... Banks are merely ... businesses that make money by borrowing cheap and lending dear. ... Profits come out of risk. ... regulate so that a financial crisis of some kind will never happen ...
    (uk.politics.misc)