Stories about: ArcSight

Cisco's the king of network security, commanding almost a quarter share of the worldwide US$6.8 billion network security market, according to IDC. But can it hold the fort?

The unfolding cliffhanger in San Francisco this week -- in which a city network administrator has been arrested for allegedly holding the network hostage -- represents an extreme example of the insider threat that IT security vendors and others have been sounding the alarm about for years.

Trusted Computing Group has expanded its interest in NAC to include the way devices behave once they have been admitted to networks, and the group is demonstrating this capability at Interop Las Vegas.

Enterprise Management Associates is back again after a year of absence, this time on a monthly basis. We've really missed your dialog and comments, and hopefully we've been missed as well. As before, this column will focus on network management trends as they fit into the bigger IT management landscape - focusing from time to time on application performance, or SLM versus BSM, or new approaches to asset management, or trends like CMDB adoption as they may affect the NOC.

The frenzy of activity triggered by a network attack requires a new approach to threat management, one that makes the network and its resources a partner in its own defense and allows security and operations groups to work together to resolve the problem.

SIM (security information management) products have become more accepted as critical components within the network security infrastructure. As such, understanding the criteria for selecting SIMs has become more important. Moreover, in a fast-evolving market segment [SIM becomes SEM (security event manager), becomes SI/EM, becomes ...], it's more important to understand the important architectural differences and implementation requirements than the industry acronyms and product names. A wave of consolidation has already begun to hit the SIM market, but the major issues and deployment criteria span brands and individual technologies.

Q1 Labs this week will unveil details around a new appliance the company says will give IT managers the event and log management capabilities they need to get and stay in compliance with regulatory requirements such as those laid out in the U.S. Payment Card Industry Data Security Standard (PCI DSS).

The more money that companies spend on securing their IT operations from external attack, the more it seems they become aware that the potential threat posed by their own employees remains their most significant risk.

Enterprise security decision makers have long been more likely to be swayed by flashy new technologies than by the notion of comprehensive IT restructuring to protect data and other corporate assets, but the situation is evolving rapidly, according to experts participating in Forrester Research's ongoing Security Forum.

Open source technologies already permeate most data centres, and their influence is spreading. However, data centre managers who wouldn't think twice about dropping a new Linux server into a rack feel very differently about building an open source firewall as the main barrier between their own network and the great unwashed. Security remains outside the open-source comfort zone.

Corporate security lapses are once again sweeping the news hour, but these days the culprit is just as likely to be an inside source -- a paid employee at a reputable company -- as a hacker doing evil somewhere in a Moscow basement.