SlideShare a Scribd company logo

Day 3 p2 - security

L
Lilian Schaffer

1) HP Enterprise Security provides a security intelligence platform to help organizations proactively manage threats and risks across their IT infrastructure. 2) The platform offers universal log management, regulatory compliance, network security, and other solutions to establish complete visibility and analyze security events. 3) Key HP security products like ArcSight, Fortify, and TippingPoint provide advanced threat detection, application testing, and network defenses respectively.

TechnologyNews & Politics
1 of 27
Downloaded 44 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
HP Enterprise Security Aarij M Khan Director of Product Marketing HP Enterprise Security Products ©2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
The Problem
Mega trends Evolving Business Models Technology Advancements Changing Workforce 3
IT architectures are evolving rapidly…. Users Users Users Users Application Application Application Application Platform Platform O/S O/S Network Mobile Physical IaaS PaaS Backend New architecture create security challenges Transparent Abstracted Security protection must focus on users and applications
Cyber crime is increasing… Threat and risks are expanding in frequency and intensity
And traditional security solutions are falling short! Technology Information Application Scanning End Point Firewall Applications IPS Network Scanners SIEM Compliance Anti-X User Web IT Operations Traditional Solutions Bolted On Architecture-Specific Lacking Automation Bolted On Limited Context Architecture-Specific Lacking Automation Limited Context Multiple Technologies Lots of Information No Intelligence
SECURITY IS A MAJOR CIO CHALLENGE Attack surface has grown as control & visibility have declined 26% more pressing than closest challenge for cloud adoption 7 © Copyright 2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
The Solution
HP Business Risk Management Strategy Using Security Intelligence Platform Business Risk management & compliance Security IT Mobile Users Rollup to Users security intelligence Applications Applications Virtual Unify the security Data Data layers Integrate Systems Systems Cloud Security & IT management Networks Networks 9
HP Enterprise Security • 1,500 security professionals from ArcSight, Fortify and TippingPoint teams • 1,500 security professionals in HP Enterprise Security Services • Top five security company by market share (leader in SIEM, Log Mgt, AppSec, Network Security) Magic Quadrant for Network Intrusion Magic Quadrant for Static and Dynamic Magic Quadrant for Security Information Prevention Systems Application Security Testing and Event Management December 2010. December 2010 and December 2011. May 2011. =HP The Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from HP.
HP has the only security intelligence platform that gives clients the insight to proactively manage their specific enterprise threats and risks.
HP Security Intelligence Platform The only security intelligence platform that gives clients the insight to proactively manage their specific enterprise security threats and risks Establish complete visibility Security Intelligence Platform IT PERFORMANCE SUITE across all applications and systems Information Information Contextual Information Analyze vulnerabilities in applications and operations Complete Visibility to understand risk Research-Backed Respond adaptively to build defenses against the Automated, Proactive & Adaptive Operations Application exploitation of vulnerabilities Measure security effectiveness Hybrid (Physical/Virtual/Cloud) and risk across people, process, and technology to improve over time ENTERPRISE SECURITY SERVICES 12 Enterprise Security – HP Confidential
ESP Security Solutions Universal Log Regulatory Proactive Insider Threat Management Compliance Network Security Intelligence Advanced Threat Privacy Breach Data Leakage Application Intelligence Intelligence Monitoring Security
The Product Solutions Enterprise Security – HP Confidential 14
INDUSTRY LEADING HP SECURITY SOLUTIONS Magic Quadrant for Network Magic Quadrant for Static Magic Quadrant for Security Intrusion Prevention Systems Application Security Testing Information and Event Management 6 December 2010. 13 December 2010. 13 May 2011. =HP The Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from HP. 1 © Copyright 2011 Hewlett-Packard Development Company, L.P. 5 The information contained herein is subject to change without notice.
Information HP ArcSight Solution Architecture A comprehensive platform for monitoring modern threats and risks, augmented by services expertise and the most advanced security user community, Protect724 Establish complete visibility Event Correlation Analyze events in real time to deliver insight User Controls Respond quickly to prevent loss Monitoring Monitoring Data Capture Measure security effectiveness across Fraud App people, process, and technology to improve Monitoring Monitoring over time Log Management
HP TippingPoint Network Defense System Operations Applications A complete set of security solutions that address today's advanced security threats at the perimeter and core of your business. Scalable Infrastructure to address current and future security deployment Next Gen IPS Next Gen Firewall models (NG IPS/FW) Dynamic Analytics and policy Net Network Defense deployment with real time (NG Mgmt) System wrk Predictive Intelligence to proactively address current and future threat activity DVLabs Next Gen Mgmt (DV Labs) Research
HP Fortify Software Security Center Applications Identifies and eliminates risk in existing applications and prevents the introduction of risk during application development, in-house or from vendors. Protects business critical applications from advanced cyber attacks by removing security vulnerabilities from software In-house Outsourced Accelerates time-to-value for achieving secure applications Increases development productivity by enabling security to be built into software, rather than added on after it is deployed Delivers risk intelligence from application development to improve operational security Commercial Open source Enterprise Security – HP Confidential
A real world example: RSA Enterprise Security – HP Confidential 19
What happened in the RSA breach? Finance person receives Opens to see 2012 Recruitment RAT program installed utilizing a junk email plan with .xls file Adobe Flash vulnerability NMAP scan of network to collect sensitive information Poison Ivy malware is initiated Collect data over a Split file, encrypt, ftp to RSA is in the headlines period of time good.mincesur.com
What if RSA was using HP ESP solutions? 1 2 3 Finance person receives Security model is broken with Use HP TippingPoint Recruitment Opens to see 2012 solutions to UseRAT program installed to eliminate HP Fortify solutions utilizing bolted on a junk email security at every layer block traffic from malicious senders plan with .xls file Adobe Flash vulnerability vulnerabilities in applications 5 4 Use HP ArcSightof network to NMAP scan solutions to correlate Use HP TippingPoint solutions to block roles and responsibilities against tasks collect sensitive information malicious Ivy malware is initiated Poison payload at the perimeter 6 Use HP ArcSight solutions to monitor Collect data over a and 7 Use HP TippingPoint HPblock traffic to to Split file, encrypt, ftp to to 8 Effective Enterprise your users, applications, malicious domain and ArcSight RSA is in the headlines Security! period of time infrastructure correlate good.mincesur.com access login/logout with network
Intelligent ESP Integrations Enterprise Security – HP Confidential 22
Secure Application Lifecycle Management Fortify intelligence integrated with HP ALM and HP Quality Center • Software Security Center or WebInspect submits security vulnerabilities to HP Application Life Cycle Management (ALM) or HP Quality Center as defects • Security Vulnerabilities can then be managed as software defects by development teams • Software Security Center remains the system of record for security vulnerabilities – Enables development teams to manage security vulnerabilities just like any other defect – Formalizes workflow for addressing security vulnerabilities – Improves security assurance for applications
Reputation Security Monitor Identify bots and quarantine devices for remediation ThreatLinQ RepDV LightHouse Events Filters Malware Analysis 1) Connection activity is Updates to ESM via ThreatLinQ reported by FW. ESM correlates coms to C&C 3) SMS sends action set to IPS. via RepDV to internal 1 Endpoints are now blocked and private IP and user ID’s quarantined for remediation 2) ESM instructs SMS to quarantine internal endpoints for remediation 2 Policy Mgmt (SMS) 3 3 1 4 4) Identity based reporting IPS IPS provides visibility to endpoint Correlation Zone infection by dept/groups Enforcement Zone
Adaptive Web Application Firewall (WAF) Technology Adaptive technology to protect web applications HP WebInspect Scan 1 • What it is Internet – Advanced web application scanning to uncover 3 vulnerabilities combined with adaptive IPS response – WebInspect information passed to WebAppDV to auto- SSL generate IPS filters for virtual vulnerability patch 4 IPS • Benefits 2 – Protection for custom and commercial web applications Vulnerability Report – Inspection of encrypted and non-encrypted traffic (ideal for web commerce apps) – Elimination of tuning required by legacy WAFs Vulnerability Page and Parameter
Why HP Enterprise Security Products • Industry-leading, automated security solutions and visibility – ArcSight, Fortify, TippingPoint all MQ Leaders/Best in Class – Security intelligence delivered in context – Trusted, proactive and automated action – Cloud-ready • Worlds best research for security intelligence and risk management – Best in class application security and network security research – Discovers more vulnerabilities than the rest of the market combined • Integrated with leading IT operations solutions – Universal Log Management tied to Systems Event Management – Enhanced asset and threat modeling – A key component of the HP IT Performance Suite 27
THANK YOU Enterprise Security – HP Confidential 28

More Related Content

PPT
Ibm security overview 2012 jan-18 sellers deck
Arrow ECS UK
 
PPTX
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...
Arrow ECS UK
 
PDF
VSD Infotech
VSD infotech
 
PPT
Arrow ECS IBM Partner Jam - Security Update - Vicki Cooper - IBM
Arrow ECS UK
 
PDF
Symantec Enterprise Mobility - Mobile World Congress February 2012
Symantec
 
PPTX
Sådan undgår du misbrug af kundedata og fortrolig information
IBM Danmark
 
PDF
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
HyTrust
 
PDF
Security brochure 2012_ibm_v1_a4
Arrow ECS UK
 
Ibm security overview 2012 jan-18 sellers deck
Arrow ECS UK
 
Seeing Through the Clouds – the Vision of the CTO Office, Joe Baguley - Chief...
Arrow ECS UK
 
VSD Infotech
VSD infotech
 
Arrow ECS IBM Partner Jam - Security Update - Vicki Cooper - IBM
Arrow ECS UK
 
Symantec Enterprise Mobility - Mobile World Congress February 2012
Symantec
 
Sådan undgår du misbrug af kundedata og fortrolig information
IBM Danmark
 
Virtualize More in 2012 with HyTrust-Boost Data Center Efficiency and Consoli...
HyTrust
 
Security brochure 2012_ibm_v1_a4
Arrow ECS UK
 

What's hot (19)

PDF
Csirs Trabsport Security September 2011 V 3.6
David Spinks
 
PDF
cyber
Luis Alejandro Molina Sánchez
 
PPTX
Trend Micro - 13martie2012
Agora Group
 
PDF
Introduction - Trend Micro Deep Security
Andrew Wong
 
PDF
Security Intelligence
IBMGovernmentCA
 
PDF
Outlook emerging security_technology_trends
wardell henley
 
PDF
Trend Micro Dec 6 Toronto VMUG
tovmug
 
PPT
Trend micro real time threat management press presentation
Andrew Wong
 
PPT
Microsoft Forefront - Secure Endpoint Solution Presentation
Microsoft Private Cloud
 
PDF
IBM per la sicurezza del Datacenter
Anna Landolfi
 
PDF
International approaches to critical information infrastructure protection ...
owaspindia
 
PDF
Bi cloud saa_s
Yustinus Malawau
 
PDF
Cyber Crime Conference 2017 - DFLabs Supervised Active Intelligence - Andrea ...
DFLABS SRL
 
PDF
Trend Micro - Virtualization and Security Compliance
1CloudRoad.com
 
PDF
Security In A Hybrid MAM and MDM World
Apperian
 
PPTX
Complete Security with Sophos and Softchoice
Softchoice Corporation
 
PDF
Regulatory Compliance Financial Institution
Apani Enterprise Security Software
 
PDF
DFlabs corporate profile 01-2013
DFLABS SRL
 
PDF
eircom Managed Security
eircom
 
Csirs Trabsport Security September 2011 V 3.6
David Spinks
 
cyber
Luis Alejandro Molina Sánchez
 
Trend Micro - 13martie2012
Agora Group
 
Introduction - Trend Micro Deep Security
Andrew Wong
 
Security Intelligence
IBMGovernmentCA
 
Outlook emerging security_technology_trends
wardell henley
 
Trend Micro Dec 6 Toronto VMUG
tovmug
 
Trend micro real time threat management press presentation
Andrew Wong
 
Microsoft Forefront - Secure Endpoint Solution Presentation
Microsoft Private Cloud
 
IBM per la sicurezza del Datacenter
Anna Landolfi
 
International approaches to critical information infrastructure protection ...
owaspindia
 
Bi cloud saa_s
Yustinus Malawau
 
Cyber Crime Conference 2017 - DFLabs Supervised Active Intelligence - Andrea ...
DFLABS SRL
 
Trend Micro - Virtualization and Security Compliance
1CloudRoad.com
 
Security In A Hybrid MAM and MDM World
Apperian
 
Complete Security with Sophos and Softchoice
Softchoice Corporation
 
Regulatory Compliance Financial Institution
Apani Enterprise Security Software
 
DFlabs corporate profile 01-2013
DFLABS SRL
 
eircom Managed Security
eircom
 
Ad

Viewers also liked (12)

PPT
IBM Rational AppScan Product Overview
Ashish Patel
 
PPT
IBM Rational AppScan Technical Overview
Ashish Patel
 
PDF
HP Enterprise Software: Making your applications and information work for you
HP Enterprise Italia
 
POTX
Agile Linguistic QA, by Vince He, HP Enterprise
TAUS - The Language Data Network
 
PPTX
Hewlett Packard Entreprise | Stormrunner load | Game Changer
Jeffrey Nunn
 
PDF
HP Helion OpenStack step by step
Bruno Cornec
 
PPTX
Hp fortify source code analyzer(sca)
Nagaraju Repala
 
PDF
Hewlett Packard Enterprise (HPE) Service Virtualization (SV)
Jeffrey Nunn
 
PPTX
HPE Agile Manager and ALM Overview
Jeffrey Nunn
 
PPTX
Application Performance Management 9.30 HPE whats new | 360 View
Jeffrey Nunn
 
PPTX
IoT Platform Meetup - HP Enterprise
Filip Kolář
 
PPTX
Hp ppt
maheshgupta01
 
IBM Rational AppScan Product Overview
Ashish Patel
 
IBM Rational AppScan Technical Overview
Ashish Patel
 
HP Enterprise Software: Making your applications and information work for you
HP Enterprise Italia
 
Agile Linguistic QA, by Vince He, HP Enterprise
TAUS - The Language Data Network
 
Hewlett Packard Entreprise | Stormrunner load | Game Changer
Jeffrey Nunn
 
HP Helion OpenStack step by step
Bruno Cornec
 
Hp fortify source code analyzer(sca)
Nagaraju Repala
 
Hewlett Packard Enterprise (HPE) Service Virtualization (SV)
Jeffrey Nunn
 
HPE Agile Manager and ALM Overview
Jeffrey Nunn
 
Application Performance Management 9.30 HPE whats new | 360 View
Jeffrey Nunn
 
IoT Platform Meetup - HP Enterprise
Filip Kolář
 
Hp ppt
maheshgupta01
 
Ad

Similar to Day 3 p2 - security (20)

PDF
Ibm rational day-france_what's next
Duffy Fron
 
PDF
Nebezpecny Internet Novejsi Verze
TUESDAY Business Network
 
PDF
Security Patterns How To Make Security Arch Easy To Consume
Jeff Johnson
 
PPT
PCTY 2012, Threat landscape and Security Intelligence v. Michael Andersson
IBM Danmark
 
PDF
INFOSEC LANDSCAPE AND RESEARCH TRENDS
gopikurup
 
PPT
Unleash Business Innovation with the Next Generation of Cloud Computing
Sam Garforth
 
PPTX
IBM Software Day 2013. Turning opportunities into outcomes
IBM (Middle East and Africa)
 
PPTX
Hadoop World 2011: Security Considerations for Hadoop Deployments - Jeremy Gl...
Cloudera, Inc.
 
PPT
What is behind the cloud
Joseph Remesar
 
PDF
The Cloud according to VMware
OpSource
 
PDF
Sccm 2012 overview - chris_estonina
Microsoft Singapore
 
PDF
Qradar ibm partner_enablement_220212_final
Arrow ECS UK
 
PDF
Cloud Security - Made simple
Sameer Paradia
 
PDF
Intel Cloud Summit: Greg Brown McAfee
IntelAPAC
 
PDF
Axxera Security Solutions
akshayvreddy
 
PPT
Asigra Product Marketing Strategy
Jas Mann
 
PDF
Strategy Cloud and Security as a Service
Aberla
 
PDF
Enterprise Security Architecture: From access to audit
Bob Rhubart
 
PPT
Jeffrey Nick
guestb8e086
 
PDF
My PC Mistook Me For A Hat
gopikurup
 
Ibm rational day-france_what's next
Duffy Fron
 
Nebezpecny Internet Novejsi Verze
TUESDAY Business Network
 
Security Patterns How To Make Security Arch Easy To Consume
Jeff Johnson
 
PCTY 2012, Threat landscape and Security Intelligence v. Michael Andersson
IBM Danmark
 
INFOSEC LANDSCAPE AND RESEARCH TRENDS
gopikurup
 
Unleash Business Innovation with the Next Generation of Cloud Computing
Sam Garforth
 
IBM Software Day 2013. Turning opportunities into outcomes
IBM (Middle East and Africa)
 
Hadoop World 2011: Security Considerations for Hadoop Deployments - Jeremy Gl...
Cloudera, Inc.
 
What is behind the cloud
Joseph Remesar
 
The Cloud according to VMware
OpSource
 
Sccm 2012 overview - chris_estonina
Microsoft Singapore
 
Qradar ibm partner_enablement_220212_final
Arrow ECS UK
 
Cloud Security - Made simple
Sameer Paradia
 
Intel Cloud Summit: Greg Brown McAfee
IntelAPAC
 
Axxera Security Solutions
akshayvreddy
 
Asigra Product Marketing Strategy
Jas Mann
 
Strategy Cloud and Security as a Service
Aberla
 
Enterprise Security Architecture: From access to audit
Bob Rhubart
 
Jeffrey Nick
guestb8e086
 
My PC Mistook Me For A Hat
gopikurup
 

More from Lilian Schaffer (20)

PDF
Collaborative Defence
Lilian Schaffer
 
PDF
3rd day hp it
Lilian Schaffer
 
PDF
3rd day big data
Lilian Schaffer
 
PDF
3rd day itsm
Lilian Schaffer
 
PDF
1st day 1 - hp and hp s oftware overview
Lilian Schaffer
 
PDF
1st day 3 - agility vs risk
Lilian Schaffer
 
PDF
1st day 4 - financial services & insurance technology trends and challenges
Lilian Schaffer
 
PDF
2nd day 1 - alm overview
Lilian Schaffer
 
PDF
1st day 2 - blueprint
Lilian Schaffer
 
PDF
2nd day 2 - bsm overview
Lilian Schaffer
 
PDF
Hplabs overviewnn
Lilian Schaffer
 
PDF
Project and portfolio management
Lilian Schaffer
 
PDF
Dev ops intro
Lilian Schaffer
 
PDF
It performance suite_overview_ebc_11062012
Lilian Schaffer
 
PDF
Hp software strategy
Lilian Schaffer
 
PDF
Day 3 P5 Hp Art
Lilian Schaffer
 
PDF
Day 3 p5 - hp art
Lilian Schaffer
 
PDF
Day 1 p1 time of remarkable change
Lilian Schaffer
 
PDF
Day 1 p3 - project and portfolio management
Lilian Schaffer
 
PDF
Day 1 p4 - application lifecycle management
Lilian Schaffer
 
Collaborative Defence
Lilian Schaffer
 
3rd day hp it
Lilian Schaffer
 
3rd day big data
Lilian Schaffer
 
3rd day itsm
Lilian Schaffer
 
1st day 1 - hp and hp s oftware overview
Lilian Schaffer
 
1st day 3 - agility vs risk
Lilian Schaffer
 
1st day 4 - financial services & insurance technology trends and challenges
Lilian Schaffer
 
2nd day 1 - alm overview
Lilian Schaffer
 
1st day 2 - blueprint
Lilian Schaffer
 
2nd day 2 - bsm overview
Lilian Schaffer
 
Hplabs overviewnn
Lilian Schaffer
 
Project and portfolio management
Lilian Schaffer
 
Dev ops intro
Lilian Schaffer
 
It performance suite_overview_ebc_11062012
Lilian Schaffer
 
Hp software strategy
Lilian Schaffer
 
Day 3 P5 Hp Art
Lilian Schaffer
 
Day 3 p5 - hp art
Lilian Schaffer
 
Day 1 p1 time of remarkable change
Lilian Schaffer
 
Day 1 p3 - project and portfolio management
Lilian Schaffer
 
Day 1 p4 - application lifecycle management
Lilian Schaffer
 

Recently uploaded (20)

PDF
Modernizing your data center with Dell and AMD
Principled Technologies
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PDF
GamePlan Trading System Review: Professional Trader's Honest Take
SOFTTECHHUB
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PDF
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Modernizing your data center with Dell and AMD
Principled Technologies
 
Approach and Philosophy of On baking technology
30anthuong17
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
GamePlan Trading System Review: Professional Trader's Honest Take
SOFTTECHHUB
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
Optimiser vos workloads AI/ML sur Amazon EC2 et AWS Graviton
Julien SIMON
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
GDG Cloud Iasi [PUBLIC] Florian Blaga - Unveiling the Evolution of Cybersecur...
athlonica
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
Advanced Soft Computing BINUS July 2025.pdf
University of Hertfordshire
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 

Day 3 p2 - security

  • 1. HP Enterprise Security Aarij M Khan Director of Product Marketing HP Enterprise Security Products ©2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice
  • 3. Mega trends Evolving Business Models Technology Advancements Changing Workforce 3
  • 4. IT architectures are evolving rapidly…. Users Users Users Users Application Application Application Application Platform Platform O/S O/S Network Mobile Physical IaaS PaaS Backend New architecture create security challenges Transparent Abstracted Security protection must focus on users and applications
  • 5. Cyber crime is increasing… Threat and risks are expanding in frequency and intensity
  • 6. And traditional security solutions are falling short! Technology Information Application Scanning End Point Firewall Applications IPS Network Scanners SIEM Compliance Anti-X User Web IT Operations Traditional Solutions Bolted On Architecture-Specific Lacking Automation Bolted On Limited Context Architecture-Specific Lacking Automation Limited Context Multiple Technologies Lots of Information No Intelligence
  • 7. SECURITY IS A MAJOR CIO CHALLENGE Attack surface has grown as control & visibility have declined 26% more pressing than closest challenge for cloud adoption 7 © Copyright 2011 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • 9. HP Business Risk Management Strategy Using Security Intelligence Platform Business Risk management & compliance Security IT Mobile Users Rollup to Users security intelligence Applications Applications Virtual Unify the security Data Data layers Integrate Systems Systems Cloud Security & IT management Networks Networks 9
  • 10. HP Enterprise Security • 1,500 security professionals from ArcSight, Fortify and TippingPoint teams • 1,500 security professionals in HP Enterprise Security Services • Top five security company by market share (leader in SIEM, Log Mgt, AppSec, Network Security) Magic Quadrant for Network Intrusion Magic Quadrant for Static and Dynamic Magic Quadrant for Security Information Prevention Systems Application Security Testing and Event Management December 2010. December 2010 and December 2011. May 2011. =HP The Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from HP.
  • 11. HP has the only security intelligence platform that gives clients the insight to proactively manage their specific enterprise threats and risks.
  • 12. HP Security Intelligence Platform The only security intelligence platform that gives clients the insight to proactively manage their specific enterprise security threats and risks Establish complete visibility Security Intelligence Platform IT PERFORMANCE SUITE across all applications and systems Information Information Contextual Information Analyze vulnerabilities in applications and operations Complete Visibility to understand risk Research-Backed Respond adaptively to build defenses against the Automated, Proactive & Adaptive Operations Application exploitation of vulnerabilities Measure security effectiveness Hybrid (Physical/Virtual/Cloud) and risk across people, process, and technology to improve over time ENTERPRISE SECURITY SERVICES 12 Enterprise Security – HP Confidential
  • 13. ESP Security Solutions Universal Log Regulatory Proactive Insider Threat Management Compliance Network Security Intelligence Advanced Threat Privacy Breach Data Leakage Application Intelligence Intelligence Monitoring Security
  • 14. The Product Solutions Enterprise Security – HP Confidential 14
  • 15. INDUSTRY LEADING HP SECURITY SOLUTIONS Magic Quadrant for Network Magic Quadrant for Static Magic Quadrant for Security Intrusion Prevention Systems Application Security Testing Information and Event Management 6 December 2010. 13 December 2010. 13 May 2011. =HP The Magic Quadrant graphic was published by Gartner, Inc. as part of a larger research note and should be evaluated in the context of the entire report. The Gartner report is available upon request from HP. 1 © Copyright 2011 Hewlett-Packard Development Company, L.P. 5 The information contained herein is subject to change without notice.
  • 16. Information HP ArcSight Solution Architecture A comprehensive platform for monitoring modern threats and risks, augmented by services expertise and the most advanced security user community, Protect724 Establish complete visibility Event Correlation Analyze events in real time to deliver insight User Controls Respond quickly to prevent loss Monitoring Monitoring Data Capture Measure security effectiveness across Fraud App people, process, and technology to improve Monitoring Monitoring over time Log Management
  • 17. HP TippingPoint Network Defense System Operations Applications A complete set of security solutions that address today's advanced security threats at the perimeter and core of your business. Scalable Infrastructure to address current and future security deployment Next Gen IPS Next Gen Firewall models (NG IPS/FW) Dynamic Analytics and policy Net Network Defense deployment with real time (NG Mgmt) System wrk Predictive Intelligence to proactively address current and future threat activity DVLabs Next Gen Mgmt (DV Labs) Research
  • 18. HP Fortify Software Security Center Applications Identifies and eliminates risk in existing applications and prevents the introduction of risk during application development, in-house or from vendors. Protects business critical applications from advanced cyber attacks by removing security vulnerabilities from software In-house Outsourced Accelerates time-to-value for achieving secure applications Increases development productivity by enabling security to be built into software, rather than added on after it is deployed Delivers risk intelligence from application development to improve operational security Commercial Open source Enterprise Security – HP Confidential
  • 19. A real world example: RSA Enterprise Security – HP Confidential 19
  • 20. What happened in the RSA breach? Finance person receives Opens to see 2012 Recruitment RAT program installed utilizing a junk email plan with .xls file Adobe Flash vulnerability NMAP scan of network to collect sensitive information Poison Ivy malware is initiated Collect data over a Split file, encrypt, ftp to RSA is in the headlines period of time good.mincesur.com
  • 21. What if RSA was using HP ESP solutions? 1 2 3 Finance person receives Security model is broken with Use HP TippingPoint Recruitment Opens to see 2012 solutions to UseRAT program installed to eliminate HP Fortify solutions utilizing bolted on a junk email security at every layer block traffic from malicious senders plan with .xls file Adobe Flash vulnerability vulnerabilities in applications 5 4 Use HP ArcSightof network to NMAP scan solutions to correlate Use HP TippingPoint solutions to block roles and responsibilities against tasks collect sensitive information malicious Ivy malware is initiated Poison payload at the perimeter 6 Use HP ArcSight solutions to monitor Collect data over a and 7 Use HP TippingPoint HPblock traffic to to Split file, encrypt, ftp to to 8 Effective Enterprise your users, applications, malicious domain and ArcSight RSA is in the headlines Security! period of time infrastructure correlate good.mincesur.com access login/logout with network
  • 22. Intelligent ESP Integrations Enterprise Security – HP Confidential 22
  • 23. Secure Application Lifecycle Management Fortify intelligence integrated with HP ALM and HP Quality Center • Software Security Center or WebInspect submits security vulnerabilities to HP Application Life Cycle Management (ALM) or HP Quality Center as defects • Security Vulnerabilities can then be managed as software defects by development teams • Software Security Center remains the system of record for security vulnerabilities – Enables development teams to manage security vulnerabilities just like any other defect – Formalizes workflow for addressing security vulnerabilities – Improves security assurance for applications
  • 24. Reputation Security Monitor Identify bots and quarantine devices for remediation ThreatLinQ RepDV LightHouse Events Filters Malware Analysis 1) Connection activity is Updates to ESM via ThreatLinQ reported by FW. ESM correlates coms to C&C 3) SMS sends action set to IPS. via RepDV to internal 1 Endpoints are now blocked and private IP and user ID’s quarantined for remediation 2) ESM instructs SMS to quarantine internal endpoints for remediation 2 Policy Mgmt (SMS) 3 3 1 4 4) Identity based reporting IPS IPS provides visibility to endpoint Correlation Zone infection by dept/groups Enforcement Zone
  • 25. Adaptive Web Application Firewall (WAF) Technology Adaptive technology to protect web applications HP WebInspect Scan 1 • What it is Internet – Advanced web application scanning to uncover 3 vulnerabilities combined with adaptive IPS response – WebInspect information passed to WebAppDV to auto- SSL generate IPS filters for virtual vulnerability patch 4 IPS • Benefits 2 – Protection for custom and commercial web applications Vulnerability Report – Inspection of encrypted and non-encrypted traffic (ideal for web commerce apps) – Elimination of tuning required by legacy WAFs Vulnerability Page and Parameter
  • 26. Why HP Enterprise Security Products • Industry-leading, automated security solutions and visibility – ArcSight, Fortify, TippingPoint all MQ Leaders/Best in Class – Security intelligence delivered in context – Trusted, proactive and automated action – Cloud-ready • Worlds best research for security intelligence and risk management – Best in class application security and network security research – Discovers more vulnerabilities than the rest of the market combined • Integrated with leading IT operations solutions – Universal Log Management tied to Systems Event Management – Enhanced asset and threat modeling – A key component of the HP IT Performance Suite 27
  • 27. THANK YOU Enterprise Security – HP Confidential 28