Bloor Research Report on SecureVue

August 26, 2009

Recently Bloor Research published an InDetail report on SecureVue, eIQ’s SIEM/Security and Compliance Management Product.

You can download the free, 11 page report from IT-Director: http://www.it-director.com/technology/paper.php?paper=761

But since we have your attention now, let us take a moment here to brag, I mean *share*, some of the findings according to Bloor Research [emphasis ours]…
 
 “SecureVue has a number of advantages over its competitors and we regard it as a must-see product.
 “A major advantage of SecureVue, based on the different types of data it tracks, is that you can follow the track of a cyber attack from a single location.
“eIQ’s key message is that “log data is not enough”. This is because hackers can disable log recording. eIQ records, monitors and correlates (with a single data model) the widest range of relevant information of any vendor in the market. This means that you can analyze breaches or attacks from a single viewpoint rather than having to use multiple tools.”
…this makes SecureVue the most complete product in the SIEM market in terms of its breadth of data collection capabilities.

Ok, that’s enough sharing for now.  You can access the full report on the IT-Director site to get the in depth report and evaluation of SecureVue: http://www.it-director.com/technology/paper.php?paper=761

Posted by eiqbeth
Filed in Announcements, Product, Solutions
Tags: , ,
Comments Off

eIQcast Episode 16: The Need for Automation

June 11, 2009

As noted in the previous post, the results of spring surveys show that security spending is trending down. While that’s not exactly a surprise, it puts security managers in a pickle. Given the economic situation, how are they to keep their systems secure and compliant, especially since the regulations haven’t changed and the hackers don’t take time off during a recession? That question is the subject of the latest episode of eIQcast, where Ross Levanto interviews eIQnetworks senior vice president of strategy Mike Rothman.

Running time: 10:46

Direct Link: http://eiqcast.podomatic.com/entry/2009-06-11T14_33_26-07_00

Don’t be like Dick and check out eIQ’s video at logdataisnotenough.com

Posted by Mike Rothman
Filed in eIQcast
Tags: ,
Comments Off

Security Spending Going Down. What Now?

June 11, 2009

Personally, I’ve been shaking my head for the past 8 months as most folks maintained that security spending was going to remain stable during the economic downturn. Huh? Everything gets cut in a downturn, yes Marge – even security. But the optimisists out there (how an optimists ends up in a security role is beyond me…) maintained that security spending would still happen for a couple of reasons:

  1. Compliance – None of the regulations are going away, nor are the auditors being furloughed. Thus, you still have to comply, regardless of the horror show that is the organization’s balance sheet.
  2. Attackers – It seems the attackers haven’t gone on vacation either. If anything, as things get tight they act more desperately to keep ill-gotten food on their table.
  3. Breaches – Successful attacks continue to happen every day, and they need to be fixed. Again, this is not dependent on the economy, so enterprises will still have to clean up their messes.

Those reasons are plausible, but I still didn’t believe it. Though I kept seeing survey after survey saying everything was OK. I was starting to think maybe it was me that was crazy.

Thankfully we are starting to see some rationality happen and perhaps even some honesty from the folks that fill out these surveys. I’ll point to a survey done by my friends at MetroSITE Group (PDF of the survey), as well as some research done by Peter Kuper and the IANS folks. Both show spending going down and even deteriorating a bit.

You can peruse the results yourself and draw your own conclusions, but ultimately the laws of economics have not been repealed. When an organization tightens the belt, EVERYONE needs to tighten. Even us security folk. So what? Budgets are down, what do we do now? The optimists do make good points in that compliance isn’t going away and neither are attackers.

It gets back to the age old need to “Do More With Less.” And the only way to do that is to automate. That’s right, the only way to continue to 1) comply and 2) secure with 3) less budget is to figure out how all that computing horsepower can be brought to bear to analyze what’s happening in your environment, allow you to react faster to threats, and to document your controls when the auditor comes to party.

So even in a “down” market, there is still a lot of need for security and compliance management solutions.

Posted by Mike Rothman
Filed in User Issues
Tags: , ,
1 Comment »

eIQcast Episode 2: Security Automation

December 10, 2008

robot-automationIn the second eIQcast, John and Mike discuss the need to automate security operations and some of the issues therein. The reality is that attacks have not stopped, but in this kind of macro-economic environment the opportunity to add resources to defend against attacks is limited. Thus we all need to work more effectively and more efficiently, which is what security automation is all about.

Running time: 13:01

Direct Link: http://eiqcast.podOmatic.com/entry/2008-12-10T07_52_11-08_00

Photo credit: goatopolis

Posted by Mike Rothman
Filed in eIQcast
Tags:
Comments Off