EMC's security division, RSA, has unveiled a set of core technologies and services designed to enable businesses to manage risk and IT compliance programs more effectively, by building an advanced security operations (ASO) function.
The solutions include the RSA Archer eGRC platform, RSA envision technology, RSA FraudAction service and RSA's Data Loss Prevention (DLP) Suite. Also included are a range of services designed to align security operations with business objectives.
According to RSA, as threats increase, so do the costs of handling them. “Moreover, businesses are faced with evolving regulatory pressure and compliance requirements.”
Although intended to mitigate risk, these requirements add an additional layer of complexity to the management workload, says RSA. Faced with constrained resources, companies must streamline their security operations beyond point products to drive efficiency.
By implementing an ASO function, companies can better identify and respond to the evolving risk and regulatory landscape.
The company says the solutions allow business to minimise risks and associated costs by identifying information security vulnerabilities and threats. “In addition, they allow businesses to gain the greatest leverage from investments in other IT systems that are deployed broadly across the infrastructure,” says RSA.
“Other benefits include the ability to take advantage of emerging technologies, services and technology integrations that offer new security capabilities, address security controls in the context of IT compliance requirements and make efficient use of human resources by eliminating non-value-added manual tasks and leveraging technology that automates key processes.
“The ASO solutions also let businesses implement a comprehensive incident-handling programme and create an effective framework for long-term security and information risk management,” adds RSA.
According to RSA, its Archer eGRC Platform serves as the foundation of an ASO function by providing a bank of incidents and pulling risk and security-related information from third-party systems, such as the RSA envision platform, the RSA DLP Suite and RSA FraudAction service, to create real-time intelligence across the enterprise.
Organisations can better assess any business impact if they can integrate intelligence on security alerts and threats, and analyse contextual information about the security and business environment, it says.
The envision platform is engineered to provide an integrated security information and event management and log management solution to collect, correlate and retain log records from every system that generates them. “This technology is designed to produce real-time alerts of high-risk events and offers visibility into the behavioural aspects of users to assist in remediation.”
The company's DLP suite is built to alert businesses to sensitive data activity that is suspicious or violates policy, says RSA. DLP also executes first-line remediation functions, such as blocking the transmission of sensitive data, or quarantining, deleting, moving or applying rights management to documents that contain private data.
Lastly, the FraudAction service is designed to prevent phishing, pharming and Trojan attacks that occur in the online channel. “The service is engineered to offer a comprehensive view of the current and emerging threat environment by identifying employees, machines or other internal resources that may be under attack or compromised.”
Share