New software from Skybox Security will help companies monitor their networks to comply with US data security regulations and help them prepare networks for malicious worms, according to the company.
Skybox View 2.0 is the latest edition of the company's security risk management software. The product allows companies to continuously monitor systems to spot risks that might jeopardise compliance with regulations, such as the Sarbanes-Oxley Act and the Gramm-Leach-Bliley Act of 1999, Skybox said.
The product has been updated to address requirements that organisations continuously monitor compliance with regulations and respond to threats. It can integrate and analyse information from other security products, such as network vulnerability scanners, firewalls and routers according to Ed Cooper, vice-president of worldwide marketing at Skybox.
The new software integrates regulatory compliance into the risk management process so that security executives can understand how threats could affect regulated business assets, such as customer or financial databases, he said.
"This connects the dots from threats to [regulatory] requirements on a daily basis," said Cooper.
The new software also adds a feature that lets organisations simulate attacks by internet worms so that network vulnerabilities can be addressed. The Worm Defense Management initiative adds a worm dictionary to the Skybox View software and features to simulate worm behavior and likely paths of attack. Network modeling features allow companies to test "what if" scenarios to see which steps might be best to remediate threats from worms, the company said.
The feature will help senior security officers decide what level of risk of worm exposure is acceptable for their organisations and which steps are the most effective at protecting their critical IT assets, said Gidi Cohen, chief executive officer of Skybox.
Paul Roberts writes for the IDG News Service