From Identification to Resolution, EMC’s Security Division Enables Customers to Automate Security Incident Management Processes
RSA Conference 2011 – San Francisco, CA — RSA, The Security Division of EMC (NYSE:EMC), today announced the RSA™ Solution for Security Incident Management, the industry's first automated solution that helps CISOs visualize and prioritize the growing number of security threats while minimizing time-consuming manual investigation processes. The new solution is designed to enable security analysts to focus on the security risks most likely to impact business objectives with more complete information to manage the resolution of those incidents.
Available this quarter, the RSA Solution for Security Incident Management is engineered to automate the identification, prioritization and resolution of enterprise security incidents. A plug-and-play integration framework streams incidents in real-time from the RSA enVision® platform to the RSA Archer™ eGRC platform. Identified incidents are then prioritized against data loss, identity, vulnerability, configuration and forensics feeds from RSA and other vendor platforms, providing complete context of events and their impact to the organization. This first integration of real-time SIEM feeds into a flexible GRC business workflow provides out-of-the-box templates, flexible workflows, alerts and role-based dashboards to efficiently manage the remediation of security incidents.
"When you're responding to a security incident, it's vitally important that you have as much information at your fingertips as possible - information about where the attack is coming from, the systems at which it is aimed, and most importantly, its potential impact on the business," said Jim Raub, Senior Director, Information Security and Compliance, PAETEC. "That way, you concentrate on responding to the right things, and spin as few wheels as possible getting to the root cause of the most important problems. RSA's Solution for Security Incident Management will help us address this."
Thought Leaders Initiate Industry's First Security Management Working Group
Managing security risk takes more than just technology, so to help customers stay ahead of security and regulatory challenges, RSA will facilitate a community of security leaders in global organizations who play key roles in directing and architecting security management programs. The objective of the Security Management Working Group is to share ideas and best practices around security management issues. Approximately 30 global organizations attended the group's first meeting at RSA® Conference on February 14, 2011. Leading this distinguished group is Samuele Ghelfi, Chief Information Security and Privacy Officer, Raymond James Financial.
"Security management professionals must cooperate, innovate and share best practices in order to keep up with the ever-expanding threat universe and enable business innovation," said Ghelfi. "The Security Management Working Group is a useful forum where leading security professionals will explore the challenges we face on a daily basis and share best practices that enable us to better facilitate the alignment of IT and business in our own organizations."
Services Help Build Customized Security Management Solutions Right-Sized for Every Organization
In order to help customers more effectively collect all of their security incidents, EMC announced a new professional services assessment called the Target Capabilities Assessment for Security Information and Event Management. The new service is designed to help customers expand beyond log management and accelerate their business-focused SIEM and eGRC program design and execution based on unparalleled understanding of the EMC and RSA product portfolio. This service is in addition to the existing broad set of eGRC and security management services for cloud computing, information governance, security management and business continuity. EMC offers its worldwide strategic guidance and technology expertise to deliver security and risk management capabilities, architectures and solutions to more than half of the Global Fortune 500 organizations.
RSA Security Management Strategy Addresses Key Security, Risk and Compliance Issues
The RSA Solution for Security Incident Management and the Security Management Working Group, coupled with professional services, are critical components of the RSA Security Management Strategy. One of the four pillars of EMC's enterprise Governance, Risk and Compliance (eGRC) strategy, the RSA Advanced Security Management strategy combines security information and event management (SIEM), data loss prevention, real-time threat intelligence and other critical aspects of an IT security operations function, all unified by the RSA Archer™ eGRC platform. It also includes integrated solutions purpose-built to address customer pain points.
"Our strategy is to bring together an integrated set of solutions and services into our overall strategy that will provide organizations with a correlated, contextual and comprehensive view of their security landscape," said Dan Schiappa, Senior Vice President, Products, RSA, The Security Division of EMC. "By collecting what were once isolated technologies, inputs and feeds into an integrated set of views and workflows, security teams will gain new abilities to prioritize threats according to their business impact and manage risk and compliance issues in a real-time, consistent and repeatable way."
RSA Security Management products and solutions will be on display in booth 1725 at RSA Conference 2011. The booth includes a simulation of the EMC Critical Incident Response Center, which will demonstrate how RSA's solutions are designed to help large organizations, like EMC -- with its 49,000 employees, 500 corporate and sales offices and partners in more than 60 countries -- protect globally distributed and virtualized operations while helping to ensure compliance against a myriad of IT risks and regulatory policies.
Availability
The RSA Solution for Security Incident Management will be generally available to customers this quarter. EMC Professional Services are generally available to customers now.
To track the latest RSA Conference 2011 happenings, including news releases, keynote videos, and event photos and videos, visit the RSA Conference Social Media Newsroom at: www.rsa.com/rsaconference2011.
About RSA
RSA, The Security Division of EMC, is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments.Combining business-critical controls in identity assurance, encryption & key management, SIEM, Data Loss Prevention and Fraud Protection with industry leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated. For more information, please visit www.RSA.com and www.EMC.com.