(by Morey Haber, BeyondTrust) Vulnerability management (VM) processes have had to evolve exponentially in recent years. Most of this evolutionhas occurred in terms network coverage, as scanners have moved beyond conducting sequential assessments to advanced agent, connector and credentialing technologies. However, most VM applications are still unable to provide meaningful data for prioritizing vulnerabilities in terms of real risk to the environment in which they’re found.
Turning Machine Data into Realtime Visibility, Insight and Intelligence
Splunk Enterprise is the platform for machine data. It's the easy, fast and resilient way to collect, analyze and secure the massive streams of machine data generated by IT systems and technology infrastructure.
Troubleshoot problems and investigate security incidents in minutes (not hours or days). Monitor your end-to-end infrastructure to avoid service degradation or outages. Gain real-time visibility and critical insights into customer experience, transactions and behavior. Make your data accessible, usable and valuable to everyone.
In the process of launching SecureSphere 10.0, Imperva also unveiled ThreatRadar Community Defense. An interesting concept, it utilises crowd-sourced threat information that gathers live attack data from WAFs deployed around the world and distributes this data in near real-time.
The Community Defense system is combined with the existing ThreadRadar service to provide a better insight into attacker identity. It allows for a more complete protection against hackers, automated clients and zero-day attacks.