Real-Time Vulnerability Management Operationalizing the VM process from detection to remediation
|
|
- Shannon Reed
- 5 years ago
- Views:
Transcription
1 18 QUALYS SECURITY CONFERENCE 2018 Real-Time Vulnerability Management Operationalizing the VM process from detection to remediation Jimmy Graham Senior Director, Product Management, Qualys, Inc.
2 Agenda Expanding Vulnerability Management Introducing Qualys Patch Management Unified Dashboard 2 QSC Conference, 2018 November 29, 2018
3 Vulnerability Management Lifecycle Asset Inventory Vulnerability Management Patch Management Threat Risk and Prioritization 3 QSC Conference, 2018 November 29, 2018
4 Expanding Vulnerability Management Containers Private Cloud IoT Devices ICS / SCADA Mobile Devices Workstations Public Cloud On Premise 4 QSC Conference, 2018 November 29, 2018
5 Case Study: Large US Bank Challenge Difficult to prioritize vulnerabilities across 100,000 endpoints Manual correlation of external threat data No active alerting on highthreat vulnerabilities Low visibility into workstations Solution Threat Protection RTIs automates prioritization Threat Protection Live Feed provides one-click access to impacted assets Continuous Monitoring combined with RTIs Qualys Cloud Agent for continuous and complete visibility 5
6 Vulnerability Management Platform Evolution
7 Elastic VM Dashboard Merges AssetView technology into Qualys VM Build widgets with vulnerability counts Search filters for quickly building queries Replace long-running reports with live widgets 7 QSC Conference, 2018 November 29, 2018
8 Opening Up the VM Detections Platform Custom Remote Detections Qualys Remote Detection Interface (QRDI) Create your own or share on Qualys Community Supports HTTP(S) and raw TCP Regex grouping and capturing LUA scripting for advanced logic 8 QSC Conference, 2018 November 29, 2018
9 Demo VM Elastic VM Dashboard
10 Qualys Patch Management Overview
11 Current Patch Management Tools Challenges and Impact Manual correlation of vulnerability to patch leads to delayed mean-time-toremediation Waiting for vulnerability reports to confirm the patch has fixed the vulnerability Remote systems only patched when connected to corporate network Limited or no coverage of third-party apps Multiple patching solutions for each OS type 11 QSC Conference, 2018 November 29, 2018
12 Introducing Qualys Patch Management Automated correlation of vulnerability and patch data Which patch fixes the CVE? Simple dashboarding for tracking patch deployments Patch using the Qualys Cloud Agent, anywhere Patch OS and third-party applications Single solution for Windows, macos, and Linux 12 QSC Conference, 2018 November 29, 2018
13 Shift From Reaction Mode to Operational Security Always up-to-date on missing patches Security and IT teams can speak the same language Collaboration key to successful digital transformation Unify discovery, prioritization, and remediation into one platform Rapid remediation of highprofile vulnerabilities in days vs. weeks Regularly scheduled deployments are repeatable and reported on 13 QSC Conference, 2018 November 29, 2018
14 Demo PM Patch Management Beta
15 Platform Support XP SP3+ Vista Windows 7 Windows 8/8.1 Windows 10 Server 2003 SP2+ Server 2008/R2 Server 2012/R2 Server 2016 OS X Yosemite OS X El Capitan macos Sierra macos High Sierra macos Mojave RHEL 6,7 CentOS 5.4+,6,7 SUSE Linux Enterprise Server/ Desktop 11,12,15 Oracle Ent Linux 6,7(Server) Ubuntu 14.x,15.x,16.x, 18.x * Beta will focus on Windows- other operating systems will follow later * Roadmap items are future-looking; timing and specifications may change 15 QSC Conference, 2018 November 29, 2018
16 Roadmap Beta: Q Windows patch deployment General Availability: Early 2019 Beta 1 Windows patching (desktops and servers) Qualys serves patches Third party Windows applications Beta 2 On-prem Caching of patches (QGS) Direct download from vendors for off-prem Additional tokens for dashboarding Upcoming Mac patching Linux patching Repository integration Automation Rules & Approval workflows 18 QSC Conference, 2018 November 29, 2018
17 Unified Dashboards Overview
18 Unified Dashboard Build dashboards with widgets from multiple Qualys Cloud Apps Target servers, containers, instances, web apps, etc. using Asset Tags 18 QSC Conference, 2018 November 29, 2018
19 Demo UD Unified Dashboard Preview
20 Unified Dashboard Rollout Phase 1 Unified Dashboard App Global dashboard filters Phase 2 Unified widget builder Upgrade existing Cloud App Dashboards Support for: Support for: VM PC FIM IOC WAS WAF SAQ AI PM CRI TP CS CV 20 QSC Conference, 2018 November 29, 2018
21 18 QUALYS SECURITY CONFERENCE 2018 Thank You Jimmy Graham
22 18 QUALYS SECURITY CONFERENCE 2018 Cloud Agent Platform Chris Carlson VP, Product Management, Qualys, Inc.
23 Digital Transformation is Driving IT Transformation for Organizations Private Clouds Public Clouds Internet Enterprise On Premise Remote End Users 23
24 But creates new Challenges for Security Don t know how many assets you have Don t Private know Clouds when those assets are running Credential issues / Authentication failures Monthly / weekly scanning too slow [WannaCry] Enterprise On Premise Can t scan remote users Remote End Users 24
25 Qualys Sensors Scalable, self-updating & centrally managed Physical Virtual Cloud/Container Cloud Agents Passive API Legacy data centers Private cloud infrastructure Commercial IaaS & PaaS clouds Light weight, multiplatform Passively sniff on network Integration with Threat Intel feeds Corporate infrastructure Continuous security and compliance scanning Virtualized Infrastructure Continuous security and compliance scanning Pre-certified in market place Fully automated with API orchestration Continuous security and compliance scanning On premise, elastic cloud & endpoints Real-time data collection Continuous evaluation on platform for security and compliance Real-time device discovery & identification Identification of APT network traffic Extract malware files from network for analysis CMDB Integration Log connectors 29 November
26 Qualys Cloud Agent Platform Lightweight Software Agent On-Premise Servers Public Cloud Windows Linux Mac Delivers Multiple Security Functions in (collects metadata only) User Endpoints AIX Cloud Native one Agent 26
27 Qualys Platform Central Management / API Qualys Suite of Applications Cloud Agent Efficient Network Usage (Delta Processing average) Lightweight Metadata Collection (tunable) Windows, Linux, Mac, AIX KB / day ~1-2% CPU 3 MB application 27
28 Qualys Cloud Agent IT, Security, Compliance Apps AI VM PC Asset Inventory Vulnerability Management Policy Compliance Indication of Compromise Detection File Integrity Monitoring Upcoming IT App (Beta November 2018) Patch Management 28 QSC Conference, 2018 November 29, 2018
29 Try and Manage Apps on One Cloud Agent End the fight with IT to deploy security agents! Remove point-solution agents from your endpoints Consolidate security tools
30 Cloud Agent Extends Network Scanning No scan windows needed always collecting Find vulnerabilities faster Detect a fixed vulnerability faster Many new Apps only available on Agent Best for assets that can t be scanned Unable to get credentials / authentication failures Remote systems in branch offices / NAT Roaming user endpoints Cloud / Elastic deployments 30
31 Cloud Agent Adoption
32 Cloud Agent VM Usage and Growth Drivers 10,000,000s 100,000s 2016 Deploy on servers to overcome customer limitations with their network scanning - Auth issues - Scan windows - More frequent VM assessments 1,000,000 s Increasing adoption for Servers - Initial adoption for end-users (WannaCry) - Early CA deployments in AWS and Azure Growth in endpoint deployments (50-300K) - Growth in public cloud (AWS primarily) - Initial work to build CA into CI/CD/ DevOps pipelines Visibility + Lightweight agent increases adoption - Increase endpoints - Increase in public cloud - Capture migration from on-premise servers to public cloud
33 Cloud Agent CPU Tuning - Linux AWS EC2 VM: < 1.2% CPU peak usage for less than 15 mins not allowed to scan nano, micro, or small instances using network scanning 0.5% CPU when idle / heartbeat AWS t2.micro instance running Cloud Agent London 16 November
34 Cloud Agent CPU Tuning - Windows Tunable CPU Limit Example: 8% configured max on 1-core (Effective: <2% on 4-core) London 16 November
35 Cloud Native Collect Provider Metadata AWS EC2 accountid amiid availabilityzone hostname hostnamepublic instanceid instancetype kernelid macaddress privateipaddress publicipaddress region reservationid securitygroupids securitygroups subnetid VPCId Microsoft Azure dnsservers ipv6 location macaddress name offer ostype privateipaddress publicipaddress publisher resourcegroupname tags subnet subscriptionid version vmid vmsize Google Compute Platform hostname instanceid macaddress machinetype network privateipaddress projectid projectidno publicipaddress zone Agent collects metadata locally
36 Cloud Provider Metadata (AWS EC2 example) accountid ami-id ami-d874e0a0 ami-launch-index 2 availabilityzone us-west-2a hostname ip us-west-2.compute.internal imageid ami-d874e0a0 instance-id i-03e86d77745bb2bba instancetype t2.micro local-hostname ip us-west-2.compute.internal local-ipv mac 06:26:0c:74:c5:9a privateip profile default-hvm public-hostname ec us-west-2.compute.amazonaws.com public-ipv region us-west-2 reservation-id r-06e5580c2918a00ba security-groups launch-wizard-2
37 Cloud Instance Metadata Merge and Agent Dynamic License Management EC2 Connector Available now aws.ec2.accountid aws.ec2.availabilityzone aws.ec2.hostname aws.ec2.hostnamepublic aws.ec2.imageid aws.ec2.instanceid d aws.ec2.instancestate aws.ec2.instancetype aws.ec2.kernelid aws.ec2.privatedns aws.ec2.privateipaddress aws.ec2.publicdns aws.ec2.publicipaddress aws.ec2.region.code aws.ec2.region.name aws.ec2.spotinstance aws.ec2.subnetid aws.ec2.vpcid Automatically merge on Instance ID (Nov 2018) Automated Rules (Dec 2018) When instancestate = TERMINATED, then remove Cloud Agent license 37 Cloud Agent Available now aws.ec2.accountid aws.ec2.availabilityzone aws.ec2.hostname aws.ec2.imageid aws.ec2.instanceid aws.ec2.instancetype d aws.ec2.kernelid aws.ec2.privatedns aws.ec2.privateipaddress aws.ec2.publicdns aws.ec2.publicipaddress aws.ec2.region.code aws.ec2.region.name aws.ec2.subnetid aws.ec2.vpcid
38 Integrate Cloud Agent into DevOps Use Cases for DevOps Build Cloud Agent into gold image or auto-deploy with CI/CD self-service results from Qualys API/UI & integrations Get vulnerability and configuration posture of OS and application along the DevOps pipeline Fix/verify security issues before going into production Use Cases for Security End-to-end lifecycle tracking development, deployment, production, decommission Same Cloud Agent across cloud, onpremise, endpoint, hybrid Single platform as DevOps tools evolve Qualys Container Security, Jenkins integration, API automation, more 38
39 Cloud Agent Microsoft Azure Integration 39
40 40
41 41
42 42
43 Vulnerability Spread at Speed of DevOps Red Hat 7.4 Marketplace Image
44 Auto-Deploy Qualys Cloud Agent
45 Vulnerability Results
46 Threat Protection Exploitability!
47 Cloud Agent Roadmap Agent Releases Mac released Aug 29 Linux 2.1 upgrade from 2.0 (FIM) released Aug 29 Linux 2.2 Dec rollout for Policy Compliance UDCs Windows rollout started Oct 17 / complete Oct 22 Features Cloud Provider Metadata (AWS, Azure, GCP) available EC2 Connector / Cloud Agent merge available Nov Windows agent to support Patch Management Beta Dec - Policy Compliance UDCs (Windows / Linux / AIX ) Dec Agent Lifecycle Management (Public cloud State-based w/ Connector / Any asset using Time-based)
48 18 QUALYS SECURITY CONFERENCE 2018 Thank You Chris Carlson
Real-Time Vulnerability Management Operationalizing the VM process from detection to remediation
18 QUALYS SECURITY CONFERENCE 2018 Real-Time Vulnerability Management Operationalizing the VM process from detection to remediation Jimmy Graham Senior Director, Product Management, Qualys, Inc. Agenda
More informationReal-Time Vulnerability Management Operationalizing the VM process from detection to remediation
18 QUALYS SECURITY CONFERENCE 2018 Real-Time Vulnerability Management Operationalizing the VM process from detection to remediation Jimmy Graham Director, Product Management, Qualys, Inc. Agenda Expanding
More informationQualys Cloud Platform
18 QUALYS SECURITY CONFERENCE 2018 Qualys Cloud Platform Looking Under the Hood: What Makes Our Cloud Platform so Scalable and Powerful Dilip Bachwani Vice President, Engineering, Qualys, Inc. Cloud Platform
More informationAutomating Security Practices for the DevOps Revolution
Automating Security Practices for the DevOps Revolution Hari Srinivasan Director Product Management, Cloud and Virtualization Security Qualys Inc. 1 Qualys, Inc. 2018 Agenda Transformation of today s IT
More informationQualys Cloud Platform
Qualys Cloud Platform Our Journey into the Cloud: The Qualys Cloud Platform & Architecture Thomas Wendt Regional Manager Post-Sales, DACH, Qualys Inc. Digital Transformation More than just adopting new
More informationRegaining Our Lost Visibility
18 QUALYS SECURITY CONFERENCE 2018 Regaining Our Lost Visibility Sumedh Thakar Chief Product Officer, Qualys, Inc. Agenda Why are we doing what we are doing? The State of IT Now Security Today The Future
More informationEverything visible. Everything secure.
Everything visible. Everything secure. Unparalleled visibility, end-to-end security and compliance for all your global IT assets Qualys Cloud Platform 2-second visibility across all your assets Continuous
More informationCommunity Edition Getting Started Guide. July 25, 2018
Community Edition Getting Started Guide July 25, 2018 Copyright 2018 by Qualys, Inc. All Rights Reserved. Qualys and the Qualys logo are registered trademarks of Qualys, Inc. All other trademarks are the
More informationSYMANTEC DATA CENTER SECURITY
SYMANTEC DATA CENTER SECURITY SYMANTEC UNIFIED SECURITY STRATEGY Users Cyber Security Services Monitoring, Incident Response, Simulation, Adversary Threat Intelligence Data Threat Protection Information
More informationPrivilege Security & Next-Generation Technology. Morey J. Haber Chief Technology Officer
Privilege Security & Next-Generation Technology Morey J. Haber Chief Technology Officer mhaber@beyondtrust.com Agenda The Next-Gen Threat Landscape o Infomatics, Breaches & the Attack Chain o Securing
More informationAWS Reference Design Document
AWS Reference Design Document Contents Overview... 1 Amazon Web Services (AWS), Public Cloud and the New Security Challenges... 1 Security at the Speed of DevOps... 2 Securing East-West and North-South
More informationInvestor presentation. Philippe Courtot, Chairman and CEO Melissa Fisher, CFO
Investor presentation Philippe Courtot, Chairman and CEO Melissa Fisher, CFO May 1 st, 2018 Safe harbor This presentation includes forward-looking statements within the meaning of the federal securities
More informationFirst Look Showcase. Expanding our prevention, detection and response solutions. Sumedh Thakar Chief Product Officer, Qualys, Inc.
18 QUALYS SECURITY CONFERENCE 2018 First Look Showcase Expanding our prevention, detection and response solutions Sumedh Thakar Chief Product Officer, Qualys, Inc. Secure Enterprise Mobility Identity (X.509,
More informationQualys Cloud Suite 2.30
Qualys Cloud Suite 2.30 Here s what s new in Qualys Cloud Suite 2.30! AssetView ThreatPROTECT Dynamic tag support for Amazon EC2 Metadata Search Assets by Amazon EC2 Metadata Cloud Agent Download Search
More informationInvestor presentation
Investor presentation Securing the digital transformation and helping build a safer world - one app at a time Philippe Courtot, Chairman and CEO Melissa Fisher, CFO October 30 th, 2018 Safe harbor This
More informationQualys Indication of Compromise
18 QUALYS SECURITY CONFERENCE 2018 Qualys Indication of Compromise Bringing IOC to the Next Level Chris Carlson VP, Product Management, Qualys, Inc. Adversary TTPs are Changing Early 2010s Zero-day Vulnerabilities
More informationChristopher Covert. Principal Product Manager Enterprise Solutions Group. Copyright 2016 Symantec Endpoint Protection Cloud
Christopher Covert Principal Product Manager Enterprise Solutions Group Copyright 2016 Symantec Endpoint Protection Cloud THE PROMISE OF CLOUD COMPUTING We re all moving from challenges like these Large
More informationQualys Cloud Platform
Qualys Cloud Platform Quick Tour The Qualys Cloud Platform is a platform of integrated solutions that provides businesses with asset discovery, network security, web application security, threat protection
More informationCLOUD WORKLOAD SECURITY
SOLUTION OVERVIEW CLOUD WORKLOAD SECURITY Bottom line: If you re in IT today, you re already in the cloud. As technology becomes an increasingly important element of business success, the adoption of highly
More informationFirst Look Showcase. Expanding our prevention, detection and response solutions. Marco Rottigni Chief Technical Security Officer, Qualys, Inc.
18 QUALYS SECURITY CONFERENCE 2018 First Look Showcase Expanding our prevention, detection and response solutions Marco Rottigni Chief Technical Security Officer, Qualys, Inc. Secure Enterprise Mobility
More informationHow to manage evolving threats on evolving ICT assets across Enterprise
How to manage evolving threats on evolving ICT assets across Enterprise Marek Skalicky, CISM, CRISC, Qualys MD for CEE November, 2015 Vaš partner za varovanje informacij Agenda Security STARTs with VISIBILITY
More informationCyberPosture Intelligence for Your Hybrid Infrastructure
VALUE BRIEF CyberPosture Intelligence for Your Hybrid Infrastructure CyberPosture is a consolidated risk score, based on configuration and workload analysis, that executives can present to their board,
More informationAzure DevOps. Randy Pagels Intelligent Cloud Technical Specialist Great Lakes Region
Azure DevOps Randy Pagels Intelligent Cloud Technical Specialist Great Lakes Region What is DevOps? People. Process. Products. Build & Test Deploy DevOps is the union of people, process, and products to
More informationTechnical Review Managing Risk, Complexity, and Cost with SanerNow Endpoint Security and Management Platform
Technical Review Managing Risk, Complexity, and Cost with SanerNow Endpoint Security and Management Platform Date: October, 2018 Author: Jack Poller, Sr. Analyst The Challenges Enterprise Strategy Group
More informationAWS Integration Guide
AWS Integration Guide Cloud-Native Security www.aporeto.com AWS Integration Guide Aporeto integrates with AWS to help enterprises efficiently deploy, manage, and secure applications at scale and the compute
More informationDEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise
DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS Security Without Compromise CONTENTS INTRODUCTION 1 SECTION 1: STRETCHING BEYOND STATIC SECURITY 2 SECTION 2: NEW DEFENSES FOR CLOUD ENVIRONMENTS 5 SECTION
More informationWITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE BENEFITS HOW THREAT MANAGER WORKS SOLUTION OVERVIEW:
SOLUTION OVERVIEW: ALERT LOGIC THREAT MANAGER WITH ACTIVEWATCH EXPERT BACKED, DETECTION AND THREAT RESPONSE Protecting your business assets and sensitive data requires regular vulnerability assessment,
More informationInvestor presentation. Philippe Courtot, Chairman and CEO Melissa Fisher, CFO
Investor presentation Philippe Courtot, Chairman and CEO Melissa Fisher, CFO October 31 st, 2017 Safe harbor This presentation includes forward-looking statements within the meaning of the federal securities
More informationP a g e 1. Teknologisk Institut. Online kursus k SysAdmin & DevOps Collection
P a g e 1 Online kursus k72751 SysAdmin & DevOps Collection P a g e 2 Title Estimated Duration (hrs) Ruby on Rails - Fundamentals 1,5 Ruby on Rails - Database Fundamentals 1,22 Python: The Basics 3,5 Python:
More informationSECURING THE MULTICLOUD
SECURING THE MULTICLOUD Bahul Harikumar and Ali Bidabadi Juniper Networks This statement of direction sets forth Juniper Networks current intention and is subject to change at any time without notice.
More informationTRUSTED IT: REDEFINE SOCIAL, MOBILE & CLOUD INFRASTRUCTURE. John McDonald
TRUSTED IT: REDEFINE SOCIAL, MOBILE & CLOUD INFRASTRUCTURE John McDonald 1 What is Trust? Can I trust that my assets will be available when I need them? Availability Critical Assets Security Can I trust
More informationDeploy Symantec Cloud Workload Protection for Storage
Deploy Symantec Cloud Workload Protection for Storage An additional layer of protection for your data stored in Amazon S3 Copyright 2018. Symantec or its affiliates. All rights reserved. Copyright 2018.
More informationInstallAnywhere: Requirements
InstallAnywhere: Requirements Create Multiplatform Installations from a Single Project File Physical, Cloud, and Virtual Environments, Plus Docker Containers Requirements This document shows the technical
More informationQualys Release Notes
Qualys 8.9.1 Release Notes This new release of the Qualys Cloud Suite of Security and Compliance Applications includes improvements to Vulnerability Management and Policy Compliance. Qualys Cloud Platform
More informationData Sheet GigaSECURE Cloud
Data Sheet GigaSECURE Cloud Intelligent network traffic visibility that enables enterprises to extend their security posture to Microsoft The rapid evolution of Infrastructure-as-a-Service (IaaS) brings
More informationQUALYS SECURITY CONFERENCE Qualys CertView. Managing Digital Certificates. Jimmy Graham Senior Director, Product Management, Qualys, Inc.
18 QUALYS SECURITY CONFERENCE 2018 Qualys CertView Managing Digital Certificates Jimmy Graham Senior Director, Product Management, Qualys, Inc. Agenda Introduction Evolving browser markers Introducing
More informationPatching and Updating your VM SUSE Manager. Donald Vosburg, Sales Engineer, SUSE
Patching and Updating your VM SUSE Manager Donald Vosburg, Sales Engineer, SUSE dvosburg@suse.com Why should I care? I just clone my base VM image, and after that it is not my problem... Understand the
More informationSecuring Amazon Web Services with Qualys. December 11, 2017
Securing Amazon Web Services with Qualys December 11, 2017 Copyright 2017 by Qualys, Inc. All Rights Reserved. Qualys and the Qualys logo are registered trademarks of Qualys, Inc. All other trademarks
More informationSecuring the Modern Data Center with Trend Micro Deep Security
Advania Fall Conference Securing the Modern Data Center with Trend Micro Deep Security Okan Kalak, Senior Sales Engineer okan@trendmicro.no Infrastructure change Containers 1011 0100 0010 Serverless Public
More informationVulnerability Management
Vulnerability Management Modern Vulnerability Management The IT landscape today is changing and because of that, vulnerability management needs to change too. IT environments today are filled with both
More informationVulnerability Management
Vulnerability Management Service Definition Table of Contents 1 INTRODUCTION... 2 2 SERVICE OFFERINGS VULNERABILITY MANAGEMENT... 2 3 SOLUTION PURPOSE... 3 4 HOW IT WORKS... 3 5 WHAT S INCLUDED... 4 6
More informationCisco Tetration Analytics Demo. Ing. Guenter Herold Area Manager Datacenter Cisco Austria GmbH
Cisco Tetration Analytics Demo Ing. Guenter Herold Area Manager Datacenter Cisco Austria GmbH Agenda Introduction Theory Demonstration Innovation Through Engineering
More informationDevSecOps Shift Left Security. Prioritizing Incident Response using Security Posture Assessment and Attack Surface Analysis
DevSecOps Shift Left Security Prioritizing Incident Response using Security Posture Assessment and Attack Surface Analysis Themes Vulnerabilities are Low Hanging Fruit Why so many breaches that Anti-Virus
More informationMcAfee Public Cloud Server Security Suite
McAfee Public Cloud Server Security Suite Comprehensive security for AWS and Azure cloud workloads As enterprises shift their data center strategy to include and often lead with public cloud server instances,
More informationChapter 5: Vulnerability Analysis
Chapter 5: Vulnerability Analysis Technology Brief Vulnerability analysis is a part of the scanning phase. In the Hacking cycle, vulnerability analysis is a major and important part. In this chapter, we
More informationConsulting Edition Getting Started Guide. October 3, 2018
Consulting Edition Getting Started Guide October 3, 2018 Copyright 2018 by Qualys, Inc. All Rights Reserved. Qualys and the Qualys logo are registered trademarks of Qualys, Inc. All other trademarks are
More informationThe Pathway to the Cloud Using Azure SQL Managed Instance
1 Sales Order Management Product Manuals 2 Agility Assurance (Security) Efficiency Experience (Apps) Business Growth 3 Catalog Existing application Define criteria for moving to or starting applications
More informationSIEMLESS THREAT DETECTION FOR AWS
SOLUTION OVERVIEW: ALERT LOGIC FOR AMAZON WEB SERVICES (AWS) SIEMLESS THREAT DETECTION FOR AWS Few things are as important to your business as maintaining the security of your sensitive data. Protecting
More informationCisco Tetration Analytics
Cisco Tetration Analytics Enhanced security and operations with real time analytics John Joo Tetration Business Unit Cisco Systems Security Challenges in Modern Data Centers Securing applications has become
More informationDATA SHEET AlienVault USM Anywhere Powerful Threat Detection and Incident Response for All Your Critical Infrastructure
DATA SHEET AlienVault USM Anywhere Powerful Threat Detection and Incident Response for All Your Critical Infrastructure AlienVault USM Anywhere accelerates and centralizes threat detection, incident response,
More informationALIENVAULT USM FOR AWS SOLUTION GUIDE
ALIENVAULT USM FOR AWS SOLUTION GUIDE Summary AlienVault Unified Security Management (USM) for AWS is a unified security platform providing threat detection, incident response, and compliance management
More informationFROM VSTS TO AZURE DEVOPS
#DOH18 FROM VSTS TO AZURE DEVOPS People. Process. Products. Gaetano Paternò @tanopaterno info@gaetanopaterno.it 2 VSTS #DOH18 3 Azure DevOps Azure Boards (ex Work) Deliver value to your users faster using
More informationTHE IMPACT OF HYBRID AND MULTI CLOUDS TO CYBERSECURITY PRIORITIES
SESSION ID: STR-R14 THE IMPACT OF HYBRID AND MULTI CLOUDS TO CYBERSECURITY PRIORITIES Doug Cahill Group Director and Senior Analyst Enterprise Strategy Group @dougcahill WHO IS THIS GUY? Topics The Composition
More informationDisclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme
MMC1532BE Using VMware NSX Cloud for Enhanced Networking and Security for AWS Native Workloads Percy Wadia Amol Tipnis VMworld 2017 Content: Not for publication #VMworld #MMC1532BE Disclaimer This presentation
More informationSelf-driving Datacenter: Analytics
Self-driving Datacenter: Analytics George Boulescu Consulting Systems Engineer 19/10/2016 Alvin Toffler is a former associate editor of Fortune magazine, known for his works discussing the digital revolution,
More informationDocker and Oracle Everything You Wanted To Know
Docker and Oracle Everything You Wanted To Know June, 2017 Umesh Tanna Principal Technology Sales Consultant Oracle Sales Consulting Centers(SCC) Bangalore Safe Harbor Statement The following is intended
More informationThe Evolution of Data Center Security, Risk and Compliance
#SymVisionEmea #SymVisionEmea The Evolution of Data Center Security, Risk and Compliance Taha Karim / Patrice Payen The Adoption Curve Virtualization is being stalled due to concerns around Security and
More informationSecurity as Code: The Time is Now. Dave Shackleford Founder, Voodoo Security Sr. Instructor, SANS
Security as Code: The Time is Now Dave Shackleford Founder, Voodoo Security Sr. Instructor, SANS Introduction Business is moving faster to the cloud, and DevOps is accelerating scale and pushing automation
More informationRed Hat Roadmap for Containers and DevOps
Red Hat Roadmap for Containers and DevOps Brian Gracely, Director of Strategy Diogenes Rettori, Principal Product Manager Red Hat September, 2016 Digital Transformation Requires an evolution in... 2 APPLICATIONS
More informationIpswitch: The New way of Network Monitoring and how to provide managed services to its customers
BRKPAR-2333 Ipswitch: The New way of Network Monitoring and how to provide managed services to its customers Paolo Ferrari, Senior Director Sales Southern Europe, Ipswitch, Inc. WhatsUp Gold Jan 2018 Agenda
More informationVMware Hybrid Cloud Solution
VMware Hybrid Cloud Solution Simplifying and Accelerating Your Multi-Cloud Strategy Bunyamin Ozyasar System Engineer Manager 2017 VMware Inc. All rights reserved. Today s Agenda 1 2 3 VMware SDDC Approach
More informationBigFix 2018 Roadmap. Aram Eblighatian. Product Manager IBM BigFix. 14 May, 2018
BigFix 2018 Roadmap Aram Eblighatian Product Manager IBM BigFix 14 May, 2018 What's New in BigFix? BigFix Platform BigFix Platform v9.5.7 Released Oct. 2017 Gathering Performance improvements (WebUI and
More informationContinuous Delivery for Cloud Native Applications
Continuous Delivery for Cloud Native Applications Cyrille Le Clerc, Director, Product Management at CloudBees Bjorn Boe, Senior Field Engineer at Pivotal Software Speakers /Cyrille Le Clerc Product Manager
More informationEdgeConnect for Amazon Web Services (AWS)
Silver Peak Systems EdgeConnect for Amazon Web Services (AWS) Dinesh Fernando 2-22-2018 Contents EdgeConnect for Amazon Web Services (AWS) Overview... 1 Deploying EC-V Router Mode... 2 Topology... 2 Assumptions
More informationData Sheet Gigamon Visibility Platform for AWS
Data Sheet Gigamon Visibility Platform for Overview The rapid evolution of Infrastructure-as-a-Service (IaaS), or public clouds, brings instant advantages of economies of scale, elasticity, and agility
More informationHALO IN ACTION COMPLIANCE DON T LET LEGACY SECURITY TOOLS HOLD UP PCI COMPLIANCE IN THE CLOUD. Automated PCI compliance anytime, anywhere.
HALO IN ACTION COMPLIANCE DON T LET LEGACY SECURITY TOOLS HOLD UP PCI COMPLIANCE IN THE CLOUD Automated PCI compliance anytime, anywhere. THE PROBLEM Online commercial transactions will hit an estimated
More informationSecurity Configuration Assessment (SCA)
Security Configuration Assessment (SCA) Getting Started Guide Security Configuration Assessment (SCA) is a lightweight cloud service which can quickly perform the configuration assessment of the IT assets,
More informationWelcome to IBM Security Guardium Analyzer!
Welcome to IBM Security Guardium Analyzer! To help you get started with IBM Security Guardium Analyzer, please refer to these frequently asked questions: What is IBM Security Guardium Analyzer? Guardium
More informationCLOUDLENS PUBLIC, PRIVATE, AND HYBRID CLOUD VISIBILITY
CLOUDLENS PUBLIC, PRIVATE, AND HYBRID CLOUD VISIBILITY ORGANIZATIONS NEED VISIBILITY TO SECURE AND MONITOR THEIR CLOUD ENVIRONMENTS Organizations are migrating workloads to the cloud because it offers
More informationPortnox CORE. On-Premise. Technology Introduction AT A GLANCE. Solution Overview
Portnox CORE On-Premise Technology Introduction Portnox CORE provides a complete solution for Network Access Control (NAC) across wired, wireless, and virtual networks for enterprise managed, mobile and
More informationIBM Cloud Security for the Cloud. Amr Ismail Security Solutions Sales Leader Middle East & Pakistan
IBM Cloud Security for the Cloud Amr Ismail Security Solutions Sales Leader Middle East & Pakistan Today s Drivers for Cloud Adoption ELASTIC LOWER COST SOLVES SKILLS SHORTAGE RAPID INNOVATION GREATER
More informationMcAfee Endpoint Threat Defense and Response Family
Defense and Family Detect zero-day malware, secure patient-zero, and combat advanced attacks The escalating sophistication of cyberthreats requires a new generation of protection for endpoints. Advancing
More informationCyber Hygiene: Uncool but necessary. Automate Endpoint Patching to Mitigate Security Risks
Cyber Hygiene: Uncool but necessary Automate Endpoint Patching to Mitigate Security Risks 1 Overview If you analyze any of the recent published attacks, two patterns emerge, 1. 80-90% of the attacks exploit
More informationForeScout Extended Module for ServiceNow
ForeScout Extended Module for ServiceNow Version 1.2 Table of Contents About ServiceNow Integration... 4 Use Cases... 4 Asset Identification... 4 Asset Inventory True-up... 5 Additional ServiceNow Documentation...
More informationCitrix Workspace Cloud
Citrix Workspace Cloud Roger Bösch Citrix Systems International GmbH Workspace Cloud is a NEW Citrix Management and Delivery Platform Customers Now Have a Spectrum of Workspace Delivery Options Done By
More informationElasterStack 3.2 User Administration Guide - Advanced Zone
ElasterStack 3.2 User Administration Guide - Advanced Zone With Advance Zone Configuration TCloud Computing Inc. 6/22/2012 Copyright 2012 by TCloud Computing, Inc. All rights reserved. This document is
More informationPUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS
PUBLIC AND HYBRID CLOUD: BREAKING DOWN BARRIERS Jane R. Circle Manager, Red Hat Global Cloud Provider Program and Cloud Access Program June 28, 2016 WHAT WE'LL DISCUSS TODAY Hybrid clouds and multi-cloud
More informationTitle DC Automation: It s a MARVEL!
Title DC Automation: It s a MARVEL! Name Nikos D. Anagnostatos Position Network Consultant, Network Solutions Division Classification ISO 27001: Public Data Center Evolution 2 Space Hellas - All Rights
More informationKubernetes Integration Guide
Kubernetes Integration Guide Cloud-Native Security www.aporeto.com Aporeto Kubernetes Integration Guide The purpose of this document is to describe the features of Aporeto that secure application services
More informationA10 HARMONY CONTROLLER
DATA SHEET A10 HARMONY CONTROLLER AGILE MANAGEMENT, AUTOMATION, ANALYTICS FOR MULTI-CLOUD ENVIRONMENTS PLATFORMS A10 Harmony Controller provides centralized agile management, automation and analytics for
More informationInfoblox as Part of the Ecosystem
Infoblox Core Exchange Infoblox Core Exchange is a highly-interconnected set of ecosystem integrations that extend security, increase agility, and provide situational awareness for more efficient operations,
More informationReference Guide Revision B. McAfee Cloud Workload Security 5.0.0
Reference Guide Revision B McAfee Cloud Workload Security 5.0.0 COPYRIGHT Copyright 2018 McAfee, LLC TRADEMARK ATTRIBUTIONS McAfee and the McAfee logo, McAfee Active Protection, epolicy Orchestrator, McAfee
More informationTable of Contents Release Notes 2013/03/25. Introduction in OS Deployment Manager. in Security Manager System Requirements
Release Notes Release Notes 2013/03/25 Table of Contents Introduction... 3 Deployment Manager... 3 New Features in Deployment Manager... 3 Security Manager... 6 New Features in Security Manager... 6 OS
More informationIntroducing MVISION. Cohesive Cloud-based Management of Threat Countermeasures and Devices Leveraging Built-in Device Controls. Jon Parkes.
Introducing MVISION Cohesive Cloud-based Management of Threat Countermeasures and Devices Leveraging Built-in Device Controls Jon Parkes McAfee 1 All information provided here is subject to non-disclosure
More informationDatacenter Security: Protection Beyond OS LifeCycle
Section Datacenter Security: Protection Beyond OS LifeCycle 1 Not so fun Facts from the Symantec ISTR 2017 Report Zero-Day Vulnerability, annual total Legitimate tools, annual total 6,000 5 5,000 4,000
More informationNo Limits Cloud Introducing the HPE Helion Cloud Suite July 28, Copyright 2016 Vivit Worldwide
No Limits Cloud Introducing the HPE Helion Cloud Suite July 28, 2016 Copyright 2016 Vivit Worldwide Brought to you by Copyright 2016 Vivit Worldwide Hosted By Jeff Jamieson VP Sales & Marketing Whitlock
More informationManaging and Auditing Organizational Migration to the Cloud TELASA SECURITY
Managing and Auditing Organizational Migration to the Cloud 1 TELASA SECURITY About Me Brian Greidanus bgreidan@telasasecurity.com 18+ years of security and compliance experience delivering consulting
More informationSymantec Endpoint Protection Family Feature Comparison
Symantec Endpoint Protection Family Feature Comparison SEP SBE SEP Cloud SEP Cloud SEP 14.2 Device Protection Laptop, Laptop Laptop, Tablet Laptop Tablet & & Smartphone Smartphone Meter Per Device Per
More informationModelos de Negócio na Era das Clouds. André Rodrigues, Cloud Systems Engineer
Modelos de Negócio na Era das Clouds André Rodrigues, Cloud Systems Engineer Agenda Software and Cloud Changed the World Cisco s Cloud Vision&Strategy 5 Phase Cloud Plan Before Now From idea to production:
More informationTenable.io User Guide. Last Revised: November 03, 2017
Tenable.io User Guide Last Revised: November 03, 2017 Table of Contents Tenable.io User Guide 1 Getting Started with Tenable.io 10 Tenable.io Workflow 12 System Requirements 15 Scanners and Agents 16 Link
More informationNGFW Security Management Center
NGFW Security Management Center Release Notes 6.3.4 Revision A Contents About this release on page 2 System requirements on page 2 Build version on page 3 Compatibility on page 5 New features on page 5
More informationLINUX, WINDOWS(MCSE),
Virtualization Foundation Evolution of Virtualization Virtualization Basics Virtualization Types (Type1 & Type2) Virtualization Demo (VMware ESXi, Citrix Xenserver, Hyper-V, KVM) Cloud Computing Foundation
More informationSecuring the Software-Defined Data Center
Securing the Software-Defined Data Center The future of the data center is software defined Key Advantages McAfee Network Platform 8.4 Delivers best-in-class IPS security across physical and softwaredefined
More informationGetting Started with AWS Security
Getting Started with AWS Security Tomas Clemente Sanchez Senior Consultant Security, Risk and Compliance September 21st 2017 2016, Amazon Web Services, Inc. or its Affiliates. All rights reserved. Move
More informationClient Automation v8.10 Enterprise, Standard, Starter*
Core Installation Satellite Installation Application Management Application Self Service Management Application Management Profiles Patch Management Security And Compliance Management OS Management Out-of-Band
More informationTHE RSA SUITE NETWITNESS REINVENT YOUR SIEM. Presented by: Walter Abeson
THE RSA NETWITNESS SUITE REINVENT YOUR SIEM Presented by: Walter Abeson 1 Reality Goals GOALS VERSUS REALITY OF SIEM 1.0 Single compliance & security interface Analyze & prioritize alerts across various
More informationWhat is Dell EMC Cloud for Microsoft Azure Stack?
What is Dell EMC Cloud for Microsoft Azure Stack? Karsten Bott @azurestack_guy Advisory Cloud Platform Specialist AzureStack GLOBAL SPONSORS Why Hybrid Cloud? The New Digital Customer Rising and continuously
More informationATTIVO NETWORKS THREATDEFEND PLATFORM INTEGRATION WITH CISCO SYSTEMS PROTECTS THE NETWORK
PARTNER BRIEF ATTIVO NETWORKS THREATDEFEND PLATFORM INTEGRATION WITH CISCO SYSTEMS PROTECTS THE NETWORK INTRODUCTION Attivo Networks has partnered with Cisco Systems to provide advanced real-time inside-the-network
More informationIntroduction to Cloud Computing
You will learn how to: Build and deploy cloud applications and develop an effective implementation strategy Leverage cloud vendors Amazon EC2 and Amazon S3 Exploit Software as a Service (SaaS) to optimize
More informationModern and Fast: A New Wave of Database and Java in the Cloud. Joost Pronk Van Hoogeveen Lead Product Manager, Oracle
Modern and Fast: A New Wave of Database and Java in the Cloud Joost Pronk Van Hoogeveen Lead Product Manager, Oracle Scott Lynn Director of Product Management, Oracle Linux and Oracle Solaris, Oracle October
More information