RSA enVision Information Management Platform with New Compliance and Security Features

(10/07/2007)

As data grows exponentially, the onus falls on organizations and their IT departments, to provide security, privacy, reliability, and compliance for at least 85 percent of the digital universe, according to IDC’s recent report, “The Expanding Digital Universe: A Forecast of Worldwide Information Growth Through 2010.” As the number of users; types of devices and applications; and the volume of regulations and industry standards also grow, the data that are needed to address security operations and compliance requirements expands.

Organisations are tasked with maximising the value of the breadth of security data to reduce security threats efficiently and to comply successfully with industry, government, and internal policies and regulations, while minimising the cost of managing these rapidly growing volumes of data.

RSA, The Security Division of EMC has announced the advancement of its information management platform for compliance and security, the RSA® enVision™ solution, through new integration, features and capabilities that will help customers accelerate their businesses by solving their most sensitive and complex security challenges.

The new features in RSA enVision technology further establishes it as a leading information management platform that comprehensively and efficiently transforms event data into the actionable compliance and security intelligence that will help achieve those goals.

Compliance and security event log data has emerged as a critical type of information that organisations need to manage – from the time the event data is created to the time it needs to be retired. RSA enVision Information Management Platform is engineered to collect All the Data™ necessary to effectively and efficiently maximise an organisation’s security posture and to reduce the burden of compliance. Integration with EMC’s information management infrastructure positions the RSA enVision platform as the solution that will allow organisations to maximise the value of this type of business information.

RSA enVision ILM is engineered to be a solution set for the management of increasing volumes of security compliance event log data over the complete security information lifecycle. The solution is designed to include tools that allow organisations to meet the critical need to optimise, protect, store, and intelligently manage their information.

The new capabilities of the RSA enVision platform are built to provide an information management platform for compliance and security data that can comprehensively and cost-effectively map and transform it into actionable compliance and security intelligence. RSA enVision ILM also is designed to encompass integrations with leading storage vendors like EMC, including easy-to-deploy pre-configured storage package options.

As engineered, this allows customers to define log retention policies in RSA enVision platform that are automatically executed through EMC’s storage solution portfolio, enabling complete collection-to-retirement management for all security information.

“Our customers know that there is an ever growing mass of compliance information putting a considerable strain on the IT infrastructures we have in place, and they are looking for ways to manage that information,” said John Worrall, vice president, Information and Event Management Business Unit, RSA, The Security Division of EMC.

“Our ILM strategy offers customers collection-to-retirement management for all security information, allowing them to maximise the value of the information while helping to minimise the cost. ILM also advances EMC’s information-centric security strategy by providing tools that are engineered to enable customers to collect, monitor, analyse and report on security event-related activity throughout the IT infrastructure – in the network, in enterprise applications, on mainframes, on desktops, in storage devices or elsewhere.”

"RSA’s enVison ILM strategy validates a fundamental reality today - that corporate and customer data is always on the move both inside and outside the network, and global regulatory compliance is driving the need to build security into the information infrastructure from the outset," said Jon Oltsik, senior analyst, Information Security at Enterprise Strategy Group.

"The integration of the RSA enVision platform, with its new features and capabilities, and the EMC platforms demonstrates that EMC and RSA are facilitating the convergence of security and storage technology to meet customers' needs. enVision ILM offers customers a cradle-to-grave approach for the management of security compliance log event data.”

As part of the ILM strategy and as a critical component of nonstop collection, RSA is now offering two new storage options from EMC that will help enable customers to store one or many years of log data online. These high availability network-attached and direct-attached storage models come preconfigured and prepackaged for simpler, faster deployment, and will help customers lower their overall storage and management costs.

In addition, RSA enVision ILM is now engineered to offer enhanced availability collection server configurations that operate in hot standby active/passive mode to effectively eliminate the risk of collection interruption. If a server failure occurs during the collection process, the hot standby component is designed to detect the problem and automatically takes over.

“The bottom line is that our customers can’t have downtime,” said Worrall. “This new enhanced availability collection capability is built to offer them uninterrupted log management. They can now manage all their data, all of the time.”

The new release of RSA enVision platform also adds three major features that collectively will help enable customers to more effectively respond to potential threats and reduce the risk of penalties. Vulnerability and Asset Management Integration adds vulnerability and asset intelligence and significantly reduces false positive alerts, enabling efficient focus on real threats.

Watchlist Alerting and Reporting allows watchlists to be created or imported to enhance efficiency of security operations. Automatic real-time alerts based on watchlists can flag policy violations as they occur, enabling real-time compliance. Task Triage and Ticketing System Integration simplifies operations by providing a complete incident response system for improved accuracy and faster resolution of investigations. Integration with an organisation’s enterprise incident management system further enhances operational efficiency.

Related topics:  Application and software security   Authentication and identity management   Computer and PC Security   Network Security 

Print version | Email to a friend | Related articles

Data breaches: Trends, costs and best practices gives you all the latest information on securing personal and corporate data, key recommendations for immediate action to improve data security, and how to respond to data breaches.

Other Security news and resources