VioPoint

Have you wondered if a change to your network infrastructure would create a vulnerability? Most organizations follow a strict change control process before introducing new components into their network environment. While these procedures help the organization understand what areas will be affected, they do not quantify the potential vulnerabilities that could also result from the change. Q1 Labs recently announced their Risk Manager solution offering that is designed to address this very issue.

QRadar Risk Manager is the first solution to successfully integrate risk management, SIEM, log management and network behavior analysis to automate risk management functions in mission critical areas, including network and security configuration, policy, and compliance management. QRadar Risk Manager automates the collection, monitoring and auditing of the configuration from routers, switches, firewalls, and IDS/IPS’s to scan for possible vulnerabilities. To create the “what if” scenario, QRadar Risk Manager evaluates the network asset profiles and compares the data with recent vulnerability scans to create a risk-based simulation of the impact that an infrastructure change will have on the environment. With this new product, IT managers will be able to simulate threats against their data centers and networks in anticipation of advanced cyber attacks; they will also be able to simulate the introduction of new applications, allowing them to see the impact of vulnerabilities that could arise before certain aspects of a network are changed.

"This product has been four years in the making, having started as an advanced research project at the Security Centre of Excellence at The University of New Brunswick (UNB), followed by several years of development by our in-house engineers," said Shaun McConnon, CEO of Q1 Labs. "QRadar Risk Manager is totally integrated with QRadar SIEM, providing enterprises with pre- and post-exploit views and analysis in real time, on a single console."

QRadar Risk Manager’s powerful security analytics, simulation, and visualization, help organizations move away from day-to-day security firefighting and adopt a holistic risk-based methodology that greatly strengthens network and security offenses while minimizing the risk of exploits.

With QRadar Risk Manager, network security teams have the tools they need to:

• Automate compliance tasks and assess compliance risk, leveraging the broadest set of risk indicators.
• Simplify multi-vendor configuration audits to ensure consistency of device configuration and assess the risk of configuration changes.
• Understand the risk impact of network changes, including new application and infrastructure deployments, through enhanced security modeling and simulations.
• Utilize powerful network security visualizations to gain insight into when traffic can and does occur on your network helping to pinpoint security risks that may exist.

If you would like to know more about the capabilities and benefits of leveraging QRadar Risk Manager, please contact VIOPOINT for more information.