In a bid to expand its packaged software and security services
portfolio, Symantec has unveiled its Security Event Management
System.
Featuring a set of applications designed to manage and pool
information from a wide array of security products and processes,
the open platform Security Management System is designed to reduce
costs and operational complexities.
Gail Hamilton, executive vice-president of Symantec, said the
product aims to ramp up response times in handling security
threats, given the large volumes of data many businesses now deal
with.
Touting Symantec's capability to integrate, configure, and
correlate key information from security products such as Checkpoint
Software Technologies Firewall-1 and RealSecure from Internet
Security Systems, Hamilton said there was no limit to the number of
nodes serviced by Symantec, nor any type of scalability issues
based upon its modular design.
The three primary components comprising the Symantec Security
Management System include Symantec Event Managers, Symantec
Incident Manager, and Symantec ESM for policy compliance.
Under Symantec Event Managers, the security vendor introduced
Symantec Event Manager for Anti-Virus and Symantec Event Manager
for Firewall. The products are geared toward customers in need of a
view of security events from a specific area of protection from
Symantec and other vendor's products. Additional event collectors
are expected to hit the market later this year.
Network defence vendor TippingPoint Technologies and intrusion
prevention software provider Entercept Security Technologies are
also expected to announce collectors, developed through a partner
plan with Symantec.
Hamilton said Symantec Incident Manager would play a huge role in
the viability of Security Event Management System. Users will tap
the software to identify and help dissect detected incidents and
respond rapidly to security breaches based upon issued alerts and
notifications.
The solution is supported by Symantec Security Response to be fed a
stream of updated signature, vulnerability and response
guidance.
Symantec ESM is the security policy compliance aspect of the
Security Management System. The application enables the creation of
customised security polices and addresses vulnerabilities isolated
by non-compliance findings.