network optimisation, security and compliance
 

"Insightix BSA protects organisations from information theft and regulatory breach by ensuring only authorised users operating known, secure and compliant devices access corporate networks.

Most importantly and uniquely Insightix is agentless, simple to implement and extends control to every type of network element.”
David Parry, Technical Director, Defend-IT

Holes in the defences

There are no silver bullets to safeguard against information theft and security breaches from inside the organisation.

  • Many invest strategically in security technology
  • Vulnerabilities remain in the network foundations
  • Risk posed by insider threat and malware are growing year-on-year
  • Regulation and the demands for compliance are increasing

The National Counter Terrorism Security Office believe the threat of corporate espionage has never been higher. Theft of commercially sensitive information is a real risk and the consequences of a breach can lead to:

  • Loss of competitive advantage
  • Damaged reputation and lost revenue
  • Financial penalties or loss of operating licences
  • Heavy fines for business Directors
  • Loss of reputation for the responsible IT controller

Insightix helps organisations to identify and close network vulnerabilities in real-time, mitigating risk and potential security breaches as they occur.

Knowledge gap = unmitigated risk

Research by Insightix has consistently shown organisations to only have knowledge of between 50% and 80% of devices connecting to the corporate network.

How do you and your clients mitigate against the following:

  • A disgruntled employee connects a laptop and cracks server passwords
  • A compliance audit identifies rogue network devices
  • Malware opens a backdoor to the network
  • Patch management covers only 80% of network devices
  • A contractor connects an insecure wireless access point
  • An employee introduces malware by connecting their home laptop
  • Information relating to customers, products or pricing is stolen or damaged

Legacy discovery tools reliant upon scheduled scans simply cannot cope with today's complex, dynamic networks.

Off-line devices, non-Windows PCs, printers, firewalled devices, virtual machines, VoIP handsets, unmanaged switches and hubs are frequently missed from asset audits, with obvious management, security and compliance implications.

Network change occurs in real-time. Gaps in knowledge are an unmitigated and significant risk.

  
Total Network Visibility
Knowledge is the foundation of good security. Maintain a real-time hardware and software profile of every network element.
Click to expand

Overview

All security technology is enhanced by Total Network Visibility.

  • Confirmation that existing protection covers every network element
  • Anti-virus and anti-spyware is present, running and up-to-date
  • Patch management can be confirmed as managing the entire estate
  • Unauthorised and non-compliant devices can be identified and investigated

A consequential reduction in the threat of malware and information theft safeguards business operations.

Insightix Total Network Visibility, without a reliance upon deployed agents, identifies, maps and profiles every network element in real-time.

Benefits

  • Critical and complete management information is available and exportable on-demand
  • Every network element from layer-2 and above is identified, mapped and profiled
  • Identification and profiling are device type, vendor and OS independent
  • Software profiles identify forbidden applications and services
  • Hardware profiles facilitate network-wide asset management and capacity planning
  • Help-desk operations are improved by the real-time availability of device information
  • Integration with Active Directory ties user contact details to devices
  • Network performance through bandwidth utilisation by device and application can be monitored
  • Simple to deploy and manage. No agents need to deployed or network changes made

Network Access Control
Complete control over which devices gain and retain access to network services. Unauthorised and high-risk devices are identified and removed
Click to expand

Overview

Any device with an RJ45 lead can connect to a data outlet on a LAN. Wireless technology opens the network further.

  • Physical building security will not protect against insider threat or malware
  • Anyone can connect a device - employees, contractors, security guards, cleaners etc.
  • Connection does not need to be malicious
  • Naivety and negligence can expose a network similarly

Insightix Network Access Control is a logical addition to Total Network Visibility and ensures only authorised devices connect to the network.

Benefits

  • Complete control achieved through the unique features of Total Network Visibility
  • Dedicated quarantine protects against the compromise of legitimate devices during authentication
  • Non-compliant devices can also be quarantined and forced through remediation
  • Pre-admission, admission and post-admission checking.
  • Simple and cost-effective to deploy. No need to integrate with switches, deploy agents or for the network to be upgraded or re-engineered
  • Granularity of control supports a logical and controlled roll-out (alert or enforce)

Secure Configuration Management
Automates the auditing and assessment of the IT infrastructure for compliance to policy and best practice
Click to expand

Overview

Compliance to regulation and best practice drives information security strategy and the associated investments in technology.

  • Risk mitigation relies upon realising the benefit of technological investment
  • Best practice (ISO 27001/2, ITIL, PCI DSS etc) dictates a minimum acceptable standard
  • Audit and assessment is resource intensive and time consuming
  • Maintenance of compliance and security between audits is paramount

Insightix SCM is a logical addition to NAC. Combined they prevent unknown devices from accessing the network and ensure known devices maintain a secure and compliant configuration.

Benefits

  • Assesses every device as often as daily without a reliance upon agents
  • Supports continuous monitoring, impact analysis, audits and improvement
  • Retrospective reporting for up to 12-months facilitates trend mapping
  • Powerful reporting engine supports compliance reporting
  • Ability to set granular, minimum standards for access
  • Can assess for multiple policies and best practices
  • Removes the reliance on annual and formal audits
  • Improved efficiency and risk mitigation

Evaluation
Assess the extent to which unknown devices access and compromise security within your network
Click to expand

Overview

Insightix Business Security Assurance (BSA), as a software solution, is straightforward to evaluate and installation typically takes a couple of hours.

Benefits

By evaluating Insightix BSA you will achieve a minimum of the following:

  • An understanding of the extent to which unknown devices exist on your network
  • Management information to include complete asset profiling, inventory and schematic
  • First hand benefit realisation without obligation or cost

Please contact our sales team if you are interested in receiving evaluation software.
     

         
  © Defend-IT Limited | Tel: 0113 815 6555 | E-mail
Head Office: Brundsmead House, 112 Lawton Road, Alsager, Stoke-on-Trent, Staffordshire, ST7 2DE
  
     
  Home | Products | Support | Contact