All federal agencies must successfully implement continuous monitoring
of network security before the end of 2012, as specifically directed by government regulators.
Driven by the National Institute of Standards and Technology's (NIST) mandate for organizations to comply by that date, most government entities are still working overtime to digest all the required practices and assess the effectiveness of their security infrastructure on a far more frequent basis.
Continuous Monitoring and Risk Assessment, Proactive Testing
Only RedSeal's proactive security intelligence solutions allow government organizations to automate continuous monitoring as outlined by NIST, advancing beyond mere perimeter surveillance to proactive testing of overall network security standing.
The RedSeal Solution
With RedSeal, government agencies can rapidly and efficiently address NIST's requirement to monitor "effectiveness of information security policies, procedures, and practices" via "automation of management, operational and technical controls."
By providing detailed visibility into the ongoing efficacy of infrastructure controls, RedSeal delivers the security monitoring and risk assessment capabilities required by government auditors to:
- Track the security state of information systems on an ongoing basis and maintain required access authorization.
- Support FISMA requirements for assessment of security controls with a frequency depending on their importance in protecting critical assets.
- Assess the security impact on information systems resulting from planned and unplanned changes to their hardware, software, firmware, or operational environment of operation.
To provide government organizations with the ability to meet the specific demands of continuous monitoring and report clearly defined metrics that track their performance as required by NIST, RedSeal offers the centralized "front- end" risk management approach to information security that federal regulators have required.