This is the sixth in our several part series, “CIO Resolutions for 2015.”
Problem: Threats abound and they don’t all look alike
New threats arise daily. Viruses, malware, and social engineering techniques have become an unfortunate attribute of the modern data center. Some are known and easy to identify. Others, such as zero day attacks, appear and exploit newly-discovered vulnerabilities in unpredictable ways.
Correlating events against external threat feed services is the most effective way to thwart new attacks from new sources. It’s also the only way to protect your customers, their data, and your reputation.
Solution: Integrate threat feeds into your security monitoring
AccelOps has integrated with external threat feeds like Emerging Threats and Zeus Tracker to identify new threats such as bad IP addresses. The system also is pre-configured to identify traffic from anonymity networks like Tor and detect malware using known hashes, All events processed are correlated against data received from external threat feeds. Think of the capability as an insurance policy that protects your network against known and unknown threats both now and in the future.
Tomorrow we’ll discuss CIO Resolution #7: Be Always Ready for a Compliance Audit