Blog post -

USM. More than it SIEMs

LONDON, 28 August 2014 – In a report titled "The Real Cost of Security", 451 Research highlighted the challenges CFOs face when weighing up investments in Security Technology and Staff. With many traditional point products typically overpriced, overly complex and difficult to integrate with one another, the concept of Unified Security Management makes a lot of sense for anyone concerned with Return On Investment as well as effective security.

USM. More than it SIEMs

With Gartner identifying AlienVault as the only Visionary in both the 2013 and 2014 Magic Quadrants for Security Information and Event Management, one could be forgiven for thinking USM by AlienVault was just a SIEM solution. In fact, USM delivers 5 Essential Security Capabilities in a Single Console.

1. Asset Discovery

Not knowing what’s on your network, or how your devices are configured could be disastrous for your organisation. Automated asset discovery helps remove the uncertainty by combining three core discovery and inventory technologies, including:

  • Passive Network Monitoring
  • Active Network Scanning
  • Host-based software inventory

 

2. Vulnerability Scanning

USM provides flexible and complementary options to mold your vulnerability assessment approach. For example, running authenticated scans on compliance-related assets, whilst instead running passive vulnerability assessment on low risk assets - where reducing network traffic matters more than validating stringent security configurations. By also providing fully schedulable scanning options, USM enables your organisation to keep on top of the changing threat landscape

3. Intrusion Detection

When it comes to finding the threats in your environment, you need intrusion detection systems everywhere on your network. Today’s attacks can easily bypass gateway firewalls, and the single system on your DMZ isn’t enough to catch them. USM enables your organisation to deploy intrusion detection anywhere and everywhere in your environment for complete, multi-layered security to catch threats wherever they exist within your network.

4. Behavioral Monitoring

Context aware security has become even more important given the rise of new polymorphic malware and zero day exploits - signatures are not enough. The behavioral monitoring functionality of USM starts gathering data to help you build a baseline measurement of “normal” system and network activity. This greatly simplifies the incident response when investigating an operational issue or potential security incident. 

5. Threat Intelligence

Busy IT security teams simply don’t have the time or the resources to do threat analysis on their own, so in order to keep pace with the rapidly changing threat landscape, it is vital that organisations are supported by ground breaking threat research work such as that from AlienVault Labs. 

Security that's effective and affordable

The only Visionary in the 2014 Gartner Magic Quadrant for SIEM, is ideal for Small and Midsize organisations with solutions starting at a very affordable £3600. Or perhaps you're looking to outsource your Security Management? Contact an Infosec Partners trusted adviser today, for help and guidance on selecting the right security solution or managed services for your organisation.


Related links

Topics

  • Business enterprise, General

Categories

  • behavioral monitoring
  • intrusion detection
  • threat intelligence
  • vulnerability scanning
  • asset discovery
  • siem
  • roi based strategy
  • alienvault
  • unified security management

Contacts

Francisco Ordillano

Press contact Consulting Partner, Commercial Director +44 (0)845 257 5903

Related content

Acknowledged as a Visionary since 2012.

AlienVault has been named by Gartner as the only Visionary in their Magic Quadrant for Security Information and Event Management (SIEM) for a fourth consecutive year. First highlighted by Gartner in the 2011 Magic Quadrant for SIEM, AlienVault has been acknowledged as a Visionary ever since.

USM. It's SIEM, SIEM but different.

Traditionally, the implementation of Security Information and Event Management solutions were limited to organisatons in the Large Enterprise bracket. Only these types of organisation could afford to procure SIEM solutions and have a large staff to manage it, as well as the other appliances that the traditional SIEM needs to be effective. But Unified Security Management by AlienVault changes that.

The only Visionary in the 2014 Gartner MQ for SIEM.

At the start of this month, July, the 2014 Gartner Magic Quadrant for Security Information and Event Management was released.That AlienVault again cements its position as the sole resident of the Visionary Quadrant for the second year running is extraordinary, given both the raft of vendors present there in the 2012 MQ and with the pace of development the Security Industry has witnessed.

Enter your email address to follow InfosecPartners

When you choose to create a user account and follow a newsroom your personal data will be used by us and the owner of the newsroom, for you to receive news and updates according to your subscription settings.

To learn more about this, please read our Privacy Policy, which applies to our use of your personal data, and our Privacy Policy for Contacts, which applies to the use of your personal data by the owner of the newsroom you follow.

Please note that our Terms of Use apply to all use of our services.

You can withdraw your consent at any time by unsubscribing or deleting your account.
Check your inbox

Email sent to __email__. Click the link there to follow InfosecPartners.

Okay