Comments for RedSeal Networks Blog

Comment on Is 90 Percent Compliance Good Enough? by Leveraging Security Metrics To Protect Your Network | RedSeal Networks Blog

Leveraging Security Metrics To Protect Your Network | RedSeal Networks Blog — Sun, 29 Jan 2012 06:25:04 +0000

[...] it’s time to re-evaluate our priorities. As our CTO Dr. Mike points out, there’s a general consensus to focus on the core controls. If you’re already covering 90% of [...]

Comment on RedSeal Research: Survey: Pros Concede Hackers Have Them Outgunned Via Tools and Automation by Leveraging Security Metrics To Protect Your Network | RedSeal Networks Blog

Leveraging Security Metrics To Protect Your Network | RedSeal Networks Blog — Sun, 29 Jan 2012 06:24:02 +0000

[...] we surveyed practitioners, 71% of respondents admitted that their networks are exposed to external threats due to misconfiguration issues in their security device infrastructure. Verizon [...]

Comment on Complexity and Confusion: The Reality of Continuous Monitoring by Can You Trust Your Partners? Lessons from Symantec, PCI, and the Government. | RedSeal Networks Blog

Wed, 11 Jan 2012 04:54:26 +0000

[...] attackers are increasingly relying on automation, and so the big theme in FISMA reform is “continuous monitoring” – automate your defenses, as far as possible. That is, FISMA is no longer a simple checklist [...]

Comment on So you think your network is complex… by Complexity Matters: Understandiing Network Security | RedSeal Networks Blog

Complexity Matters: Understandiing Network Security | RedSeal Networks Blog — Wed, 28 Dec 2011 03:23:14 +0000

[...] It’s not even a reasonable fraction of the complexity of your network. [...]

Comment on So you think your network is complex… by Complexity Matters | RedSeal Networks Blog

Complexity Matters | RedSeal Networks Blog — Wed, 28 Dec 2011 03:08:42 +0000

[...] It’s not even a reasonable fraction of the complexity of your network. [...]

Comment on The Two Sides of Continuous Monitoring by Complexity and Confusion: The Reality of Continuous Monitoring | RedSeal Networks Blog

Wed, 14 Dec 2011 20:40:53 +0000

[...] our government advisor Major General John Casciano (USAF-Ret.) has been saying for years, we knew that various agencies’ and practitioners’ perceptions of what adopting continuous [...]

Comment on Is 90 Percent Compliance Good Enough? by t3hpaul

t3hpaul — Wed, 30 Nov 2011 18:55:27 +0000

Why not just go the extra 10% and give yourself piece of mind?

I guess it depends on what you’re protecting, really. The low-level vulnerabilities that you’re not going to patch up or protect always seem to be the ones that give an attacker the most freedom or power to move within your systems/network..

Comment on Communication Breakdown: Insight Isn’t Free by RedSeal Systems - Blog

RedSeal Systems - Blog — Mon, 31 Oct 2011 23:06:54 +0000

[...] my previous blog post Insight Isn’t Free, I wrote about the challenge organizations often have in distinguishing between which tasks are [...]

Comment on The Two Sides of Continuous Monitoring by RedSeal Systems - Blog

RedSeal Systems - Blog — Mon, 26 Sep 2011 17:01:41 +0000

[...] It’s no coincidence that I’m posting this feedback on the blog here at RedSeal, as the company’s solutions provide exactly the types of capabilities around proactive assessment and utilization of outcome-based metrics that the OMB, NIST and others have defined as requirements for continuous monitoring. [...]

Comment on Lost In Translation: Connecting Policy with Implementation by RedSeal Systems - Blog

RedSeal Systems - Blog — Tue, 03 May 2011 18:01:15 +0000

[...] only possible answer is to employ security analytics that thoroughly examine the interaction between firewalls, routers, load balancers and switches to determine an organization’s security [...]