Johannesburg, 09 Nov 2001
As the number of attacks on computer systems, corporate networks and service providers continues to rise, Enterasys Networks has unveiled a new portfolio of security services designed to assist organisations to prevent and defend against attacks on valuable electronic information.
Dubbed Information Assurance, the portfolio comprises a set of end-to-end professional services that helps users to develop, implement and execute effective security strategies to assure the protection of valuable network-based corporate information assets.
A critical service component of Enterasys Networks` Secure Harbour architecture, Information Assurance is said to provide the needed services to address all aspects of the security lifecycle - protection, detection, assessment and correction.
"When planning and implementing network security, most organisations focus on security products and processes, but not people - the services aspect of a security solution," says Martin May, regional director (sub-Saharan Africa) of Enterasys.
"Enterasys` Information Assurance programme delivers a set of services that complement its Secure Harbour security architecture to help defend against threats such as viruses, computer fraud and cyber-attacks on corporate networks."
Secure Harbour is a holistic framework for enterprise security that leverages key Enterasys technologies, including point security products, such as intrusion detection systems (IDS), virtual private networks (VPN) and firewalls, embedded security features in its routers and switches, encryption features in its wireless products, network and policy management systems, and support for the IEEE 802.1X authentication standard.
"Secure Harbour`s comprehensive approach provides security solutions for access networks, LAN and WAN infrastructure and data centre switching to ensure the integrity, confidentially and availability of network-based information," continues May.
"Information Assurance builds upon Secure Harbour by providing services that can help companies in all industries to implement proper security measures to safeguard their corporate data.
"Its methodology includes identifying vulnerable areas within a network infrastructure and implementing measures to correct them, proactively implementing new security measures as they evolve, and maintaining compliance with industry-specific initiatives."
May says Enterasys` methodology helps users implement appropriate security measures, such as HIPAA regulations for customers in healthcare and Gramm-Leach-Bliley compliance for financial institutions.
From a product perspective there are six Enterasys` Information Assurance solutions. Each addresses an element in the computer security lifecycle.
Initial services include security assessments and awareness education services.
The Information Assurance Assessment involves the audit of current information infrastructure to identify vulnerabilities or inconsistencies in the overall network. The assessment includes three stages: Security Policy Assessment, Disaster Recovery Assessment and Vulnerability Assessment, and then provides a complete report outlining vital security issues.
Enterasys` Information Assurance service will be provided through its alliance partner in SA, Duxbury Networking, who will also provide information education for both the end-user and executive-level management.
Share