SlideShare a Scribd company logo

RSA 2014: Skybox Security Risk Analytics Overview

Skybox Security, profile picture
Skybox Security

Skybox Security provides solutions for security management challenges such as risk visibility, vulnerability management, and threat response, empowering leaders in various sectors including finance and government. Their services automate security tasks, prioritize critical risks, and offer integrated analytics to effectively manage vulnerabilities and network compliance. The result is a significant reduction in incident response times and improved management of security protocols.

Technology
Related topics:
Cyber Threats Cyber-Security Information Security Vulnerability Management
1 of 12
Downloaded 43 times
1
2
3
4
5
6
7
8
9
10
11
12
Skybox Security: Take Charge of Risk!
Security Leaders Choose Skybox Financial Services Service Providers Energy & Utilities Gov & Defense Others 6 OF THE TOP 10 GLOBAL BANKS 6 OF THE TOP 10 NATO COUNTRIES © 2014 Skybox Security Inc. 2
Security Management Challenges Problem: “Swivel chair integration” Firewall & Change Management No Network Context © 2014 Skybox Security Inc. Vulnerability Management Threat Response Slow to respond Too much data 3
Skybox: Visibility, Intelligence, Control Automate security tasks Visualize network security FIREWALL & CHANGE MANAGEMENT TAKE ACTION FAST! THREAT RESPONSE VULNERABILITY MANAGEMENT Identify attack vectors © 2014 Skybox Security Inc. 4 Prioritize critical risks
Skybox Builds a Model of the Network Layer 3 Routing © 2014 Skybox Security Inc. Threats Vulns 5 Assets Log Data Policies
Comprehensive Network Context √ All and more integrated with Skybox © 2014 Skybox Security Inc. 6 6
Analytics Find the Real Risks, Fast Vulnerabilities Rogue Admin  CVE 2013-0640  CVE 2012-1895  CVE 2013-0093 Internet Hacker Attack Simulation Compromised Partner © 2014 Skybox Security Inc. 7
Network Security Management with Skybox Model Network Analyze Firewalls Monitor Compliance Manage Changes Change Request  Network  Rule and  Automatic topology view  Normalize data from 80+ systems  Access simulation configuration checks  Access path analysis  Optimize rules  Track changes audits  PCI DSS, FISMA, NERC, NIST…  Custom Policies Understand network context © 2014 Skybox Security Inc. Automate assessments Verify controls continuously 8 Tech Details Assess Risks Make Change Reconcile Verify Optimize change process
Vulnerability and Threat Management with Skybox Discover Analyze Prioritize  Scanless  Vulnerability hot vulnerability detection  Import 3rd party VA scans  Threat intel spots  Attack simulation technology  Network context  Attack vectors  Business impact  Heat maps Up-to-date, less disruption © 2014 Skybox Security Inc.  Risk exposure  Geo or Find areas of greatest impact Reduce risk exposure 9 Remediate and Track  Remediation planning  Ticketing and workflow  Dashboards and reporting Manage effectively
Success Stories Reinventing Security Management Vulnerability Management – Accurate and Fast  From once a month scanning to continuous view of vulnerabilities  False positives rate dropped from 20%+ to <1%  Reduced incident response from weeks to hours! Network Security – Continuous Compliance  Now able to easily manage 1000 firewalls, 40,000 rules  Daily compliance with ISO27001, SOX  From weeks to analyze, to security diagnosis in minutes © 2014 Skybox Security Inc. 10
Take Charge, Take Control of Risk! Vulnerability Management Comparison TRADITIONAL TOOLS © 2014 Skybox Security Inc. SKYBOX SECURITY 11
Make sure you are registered to WIN an e-Zip E750 Electric Scooter Thank you www.skyboxsecurity.com © 2014 Skybox Security Inc. 12

More Related Content

PDF
Infosec 2014: Who Is Skybox Security?
Skybox Security
 
PPTX
Network Security Trends for 2016: Taking Security to the Next Level
Skybox Security
 
PPTX
Risk Analytics: One Intelligent View
Skybox Security
 
PDF
Infosec 2014: Risk Analytics: Using Your Data to Solve Security Challenges
Skybox Security
 
PDF
Black Hat 2014: Don’t be a Target: Everything You Know About Vulnerability Pr...
Skybox Security
 
PPTX
Network Security Best Practices - Reducing Your Attack Surface
Skybox Security
 
PPTX
What's Wrong with Vulnerability Management & How Can We Fix It
Skybox Security
 
PPTX
5 Steps to Reduce Your Window of Vulnerability
Skybox Security
 
Infosec 2014: Who Is Skybox Security?
Skybox Security
 
Network Security Trends for 2016: Taking Security to the Next Level
Skybox Security
 
Risk Analytics: One Intelligent View
Skybox Security
 
Infosec 2014: Risk Analytics: Using Your Data to Solve Security Challenges
Skybox Security
 
Black Hat 2014: Don’t be a Target: Everything You Know About Vulnerability Pr...
Skybox Security
 
Network Security Best Practices - Reducing Your Attack Surface
Skybox Security
 
What's Wrong with Vulnerability Management & How Can We Fix It
Skybox Security
 
5 Steps to Reduce Your Window of Vulnerability
Skybox Security
 

What's hot (20)

PPTX
Using a Network Model to Address SANS Critical Controls 10 and 11
Skybox Security
 
PDF
Best Practices for Network Security Management
Skybox Security
 
PPTX
#ALSummit: Accenture - Making the Move: Enabling Security in the Cloud
Alert Logic
 
PPTX
A Call to Arms: Using a Working Model of the Attack Surface to Improve Incide...
Skybox Security
 
PPTX
#ALSummit: Realities of Security in the Cloud
Alert Logic
 
PDF
Top 5 Cloud Security Predictions for 2016
Alert Logic
 
PPTX
Webcast Series #1: Continuous Security and Compliance Monitoring for Global I...
Qualys
 
PDF
Security Starts at the Endpoint
Elasticsearch
 
PDF
Web App Attacks - Stats & Remediation
Qualys
 
PDF
Introduction to Azure Sentinel
arnaudlh
 
PPTX
#ALSummit: Architecting Security into your AWS Environment
Alert Logic
 
PDF
Securing Your Business #3 - Role Of The Service Provider
Datapipe
 
PPTX
How to Rapidly Identify Assets at Risk to WannaCry Ransomware
Qualys
 
PDF
Pervasive Security Across Your Extended Network
Cisco Security
 
PPTX
Azure Sentinel
Cheah Eng Soon
 
PDF
Cisco Security Presentation
Simplex
 
PDF
Midsize Business Solutions: Cybersecurity
Cisco Security
 
PPTX
Webcast Series #3: GDPR Deadline Readiness and Impact to Global Organizations...
Qualys
 
PDF
Security Whack-a-Mole: SANS 2017 Threat Landscape Survey
Qualys
 
PPTX
Automating Critical Security Controls for Threat Remediation and Compliance
Qualys
 
Using a Network Model to Address SANS Critical Controls 10 and 11
Skybox Security
 
Best Practices for Network Security Management
Skybox Security
 
#ALSummit: Accenture - Making the Move: Enabling Security in the Cloud
Alert Logic
 
A Call to Arms: Using a Working Model of the Attack Surface to Improve Incide...
Skybox Security
 
#ALSummit: Realities of Security in the Cloud
Alert Logic
 
Top 5 Cloud Security Predictions for 2016
Alert Logic
 
Webcast Series #1: Continuous Security and Compliance Monitoring for Global I...
Qualys
 
Security Starts at the Endpoint
Elasticsearch
 
Web App Attacks - Stats & Remediation
Qualys
 
Introduction to Azure Sentinel
arnaudlh
 
#ALSummit: Architecting Security into your AWS Environment
Alert Logic
 
Securing Your Business #3 - Role Of The Service Provider
Datapipe
 
How to Rapidly Identify Assets at Risk to WannaCry Ransomware
Qualys
 
Pervasive Security Across Your Extended Network
Cisco Security
 
Azure Sentinel
Cheah Eng Soon
 
Cisco Security Presentation
Simplex
 
Midsize Business Solutions: Cybersecurity
Cisco Security
 
Webcast Series #3: GDPR Deadline Readiness and Impact to Global Organizations...
Qualys
 
Security Whack-a-Mole: SANS 2017 Threat Landscape Survey
Qualys
 
Automating Critical Security Controls for Threat Remediation and Compliance
Qualys
 
Ad

Similar to RSA 2014: Skybox Security Risk Analytics Overview (20)

PPTX
Cloud Computing Security Essentials for beginners
ssuser1e89a0
 
PPTX
The Notorious 9 Cloud Computing Threats - CSA Congress, San Jose
Moshe Ferber
 
PDF
ArticWolf - Securing Amazon AWS & Microsoft Azure.pdf
JoseLuisSilva50
 
PPTX
CSS 17: NYC - Realities of Security in the Cloud
Alert Logic
 
PDF
Get ahead of cloud network security trends and practices in 2020
Cynthia Hsieh
 
PPTX
CSS17: Atlanta - Realities of Security in the Cloud
Alert Logic
 
PDF
Whose Cloud Is It Anyway? Exploring Data Security, Ownership and Control
David Etue
 
PDF
CSA & GRC Stack
CloudSecurityAllianceAustralia
 
PPTX
Enterprise Security in Cloud
Lenin Aboagye
 
PPTX
Enterprise Security in Hybrid Cloud ISACA-SV 2012
Symosis Security (Previously C-Level Security)
 
PDF
Is Your Vulnerability Management Program Keeping Pace With Risks?
Skybox Security
 
PDF
Cloud security risks
Revital Lapidot
 
PDF
Cloud security risks
Revital Lapidot
 
PDF
CCSK, cloud security framework, Indonesia
Wise Pacific Venture
 
PPTX
Presentation.pptx
DeepP7
 
PPTX
OWASP Cloud Top 10
Ludovic Petit
 
PPTX
Lss implementing cyber security in the cloud, and from the cloud-feb14
L S Subramanian
 
PDF
7-Cloudy with a chance of digitalization.pdf
Eng. Ala' Zayadeen- MBA,CEH,ISO Lead Implementer, MCP
 
PDF
Itmgen 4317 security
Cisco
 
PDF
The Share Responsibility Model of Cloud Computing - ILTA NYC
Patrick Sklodowski
 
Cloud Computing Security Essentials for beginners
ssuser1e89a0
 
The Notorious 9 Cloud Computing Threats - CSA Congress, San Jose
Moshe Ferber
 
ArticWolf - Securing Amazon AWS & Microsoft Azure.pdf
JoseLuisSilva50
 
CSS 17: NYC - Realities of Security in the Cloud
Alert Logic
 
Get ahead of cloud network security trends and practices in 2020
Cynthia Hsieh
 
CSS17: Atlanta - Realities of Security in the Cloud
Alert Logic
 
Whose Cloud Is It Anyway? Exploring Data Security, Ownership and Control
David Etue
 
CSA & GRC Stack
CloudSecurityAllianceAustralia
 
Enterprise Security in Cloud
Lenin Aboagye
 
Enterprise Security in Hybrid Cloud ISACA-SV 2012
Symosis Security (Previously C-Level Security)
 
Is Your Vulnerability Management Program Keeping Pace With Risks?
Skybox Security
 
Cloud security risks
Revital Lapidot
 
Cloud security risks
Revital Lapidot
 
CCSK, cloud security framework, Indonesia
Wise Pacific Venture
 
Presentation.pptx
DeepP7
 
OWASP Cloud Top 10
Ludovic Petit
 
Lss implementing cyber security in the cloud, and from the cloud-feb14
L S Subramanian
 
7-Cloudy with a chance of digitalization.pdf
Eng. Ala' Zayadeen- MBA,CEH,ISO Lead Implementer, MCP
 
Itmgen 4317 security
Cisco
 
The Share Responsibility Model of Cloud Computing - ILTA NYC
Patrick Sklodowski
 
Ad

More from Skybox Security (17)

PPTX
CAPITA - Network Visibility to Manage Firewall Changes & Reduce Risk
Skybox Security
 
PPTX
Secure Data GI - Delivering Contextual Intelligence
Skybox Security
 
PDF
Infosec 2014: Tech Talk - Firewall Change Management
Skybox Security
 
PDF
Infosec 2014: Tech Talk - Non-Disruptive Vulnerability Discovery
Skybox Security
 
PDF
Infosec 2014: Finding and Understanding the Risk Impact of Firewall Changes
Skybox Security
 
PDF
Infosec 2014: Capita Customer Management: Network Visibility to Manage Firewa...
Skybox Security
 
PDF
Infosec 2014: Intelligence as a Service: The Future of Frontline Security
Skybox Security
 
PDF
RSA 2014: Non-Disruptive Vulnerability Discovery, Without Scanning Your Network
Skybox Security
 
PDF
RSA 2014: Firewall Change Management: Automate, Secure & Comply
Skybox Security
 
PDF
Infographic: Are You Keeping Pace with Security Risks?
Skybox Security
 
PDF
Best Practice Next-Generation Vulnerability Management to Identify Threats, ...
Skybox Security
 
PDF
Out With the Old, In With the New – Reinvent and Justify Your 2013 Security S...
Skybox Security
 
PDF
Security at the Breaking Point: Rethink Security in 2013
Skybox Security
 
PDF
Transitioning to Next-Generation Firewall Management - 3 Ways to Accelerate t...
Skybox Security
 
PDF
Is Your Vulnerability Management Program Irrelevant?
Skybox Security
 
PPTX
Anticipate and Prevent Cyber Attack Scenarios, Before They Occur
Skybox Security
 
PDF
Think Like a Hacker: Using Network Analytics and Attack Simulation to Find an...
Skybox Security
 
CAPITA - Network Visibility to Manage Firewall Changes & Reduce Risk
Skybox Security
 
Secure Data GI - Delivering Contextual Intelligence
Skybox Security
 
Infosec 2014: Tech Talk - Firewall Change Management
Skybox Security
 
Infosec 2014: Tech Talk - Non-Disruptive Vulnerability Discovery
Skybox Security
 
Infosec 2014: Finding and Understanding the Risk Impact of Firewall Changes
Skybox Security
 
Infosec 2014: Capita Customer Management: Network Visibility to Manage Firewa...
Skybox Security
 
Infosec 2014: Intelligence as a Service: The Future of Frontline Security
Skybox Security
 
RSA 2014: Non-Disruptive Vulnerability Discovery, Without Scanning Your Network
Skybox Security
 
RSA 2014: Firewall Change Management: Automate, Secure & Comply
Skybox Security
 
Infographic: Are You Keeping Pace with Security Risks?
Skybox Security
 
Best Practice Next-Generation Vulnerability Management to Identify Threats, ...
Skybox Security
 
Out With the Old, In With the New – Reinvent and Justify Your 2013 Security S...
Skybox Security
 
Security at the Breaking Point: Rethink Security in 2013
Skybox Security
 
Transitioning to Next-Generation Firewall Management - 3 Ways to Accelerate t...
Skybox Security
 
Is Your Vulnerability Management Program Irrelevant?
Skybox Security
 
Anticipate and Prevent Cyber Attack Scenarios, Before They Occur
Skybox Security
 
Think Like a Hacker: Using Network Analytics and Attack Simulation to Find an...
Skybox Security
 

Recently uploaded (20)

PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
PPTX
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
DOCX
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
PPTX
Cloud computing and distributed systems.
kkkkkhan
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
Spectroscopy.pptx food analysis technology
nawahassan45
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
PDF
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
Reach Out and Touch Someone: Haptics and Empathic Computing
Mark Billinghurst
 
sap open course for s4hana steps from ECC to s4
sreeni2106invites
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
The AUB Centre for AI in Media Proposal.docx
GAONE9
 
Cloud computing and distributed systems.
kkkkkhan
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
Spectroscopy.pptx food analysis technology
nawahassan45
 
Teaching material agriculture food technology
LiaRayya
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
KodekX | Application Modernization Development
KodekX
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Agricultural_Statistics_at_a_Glance_2022_0.pdf
SandeepSingh286037
 
TokAI - TikTok AI Agent : The First AI Application That Analyzes 10,000+ Vira...
SOFTTECHHUB
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Encapsulation theory and applications.pdf
gurumoop
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 

RSA 2014: Skybox Security Risk Analytics Overview

  • 2. Security Leaders Choose Skybox Financial Services Service Providers Energy & Utilities Gov & Defense Others 6 OF THE TOP 10 GLOBAL BANKS 6 OF THE TOP 10 NATO COUNTRIES © 2014 Skybox Security Inc. 2
  • 3. Security Management Challenges Problem: “Swivel chair integration” Firewall & Change Management No Network Context © 2014 Skybox Security Inc. Vulnerability Management Threat Response Slow to respond Too much data 3
  • 4. Skybox: Visibility, Intelligence, Control Automate security tasks Visualize network security FIREWALL & CHANGE MANAGEMENT TAKE ACTION FAST! THREAT RESPONSE VULNERABILITY MANAGEMENT Identify attack vectors © 2014 Skybox Security Inc. 4 Prioritize critical risks
  • 5. Skybox Builds a Model of the Network Layer 3 Routing © 2014 Skybox Security Inc. Threats Vulns 5 Assets Log Data Policies
  • 6. Comprehensive Network Context √ All and more integrated with Skybox © 2014 Skybox Security Inc. 6 6
  • 7. Analytics Find the Real Risks, Fast Vulnerabilities Rogue Admin  CVE 2013-0640  CVE 2012-1895  CVE 2013-0093 Internet Hacker Attack Simulation Compromised Partner © 2014 Skybox Security Inc. 7
  • 8. Network Security Management with Skybox Model Network Analyze Firewalls Monitor Compliance Manage Changes Change Request  Network  Rule and  Automatic topology view  Normalize data from 80+ systems  Access simulation configuration checks  Access path analysis  Optimize rules  Track changes audits  PCI DSS, FISMA, NERC, NIST…  Custom Policies Understand network context © 2014 Skybox Security Inc. Automate assessments Verify controls continuously 8 Tech Details Assess Risks Make Change Reconcile Verify Optimize change process
  • 9. Vulnerability and Threat Management with Skybox Discover Analyze Prioritize  Scanless  Vulnerability hot vulnerability detection  Import 3rd party VA scans  Threat intel spots  Attack simulation technology  Network context  Attack vectors  Business impact  Heat maps Up-to-date, less disruption © 2014 Skybox Security Inc.  Risk exposure  Geo or Find areas of greatest impact Reduce risk exposure 9 Remediate and Track  Remediation planning  Ticketing and workflow  Dashboards and reporting Manage effectively
  • 10. Success Stories Reinventing Security Management Vulnerability Management – Accurate and Fast  From once a month scanning to continuous view of vulnerabilities  False positives rate dropped from 20%+ to <1%  Reduced incident response from weeks to hours! Network Security – Continuous Compliance  Now able to easily manage 1000 firewalls, 40,000 rules  Daily compliance with ISO27001, SOX  From weeks to analyze, to security diagnosis in minutes © 2014 Skybox Security Inc. 10
  • 11. Take Charge, Take Control of Risk! Vulnerability Management Comparison TRADITIONAL TOOLS © 2014 Skybox Security Inc. SKYBOX SECURITY 11
  • 12. Make sure you are registered to WIN an e-Zip E750 Electric Scooter Thank you www.skyboxsecurity.com © 2014 Skybox Security Inc. 12