|
Independent Verification and Validation: Keeping Defenses Aligned with Policies
Network changes that are intended to increase security can easily cause defenses to become misaligned with policies instead. A properly implemented Independent Verification and Validation (IV&V) program, however, enables agencies to rectify this issue before it becomes a much bigger problem. IV&V is a vital step in any large information security project, providing an independent project evaluation by a detached entity that is not enmeshed in project details or assumptions. Join Lumeta and Intelligent Decisions for this Webcast to learn how to automate system reviews to save time and costs, quickly identify risks and potential problem spots, prioritize what needs to be prevented or corrected immediately versus what can be handled over time, ensure the integrity and availability of systems and data through the complete visibility of connectivity that Network Assurance provides.
Scheduled for LIVE broadcast April 15, 2008 at 2PM EDT/10AM PDT
Register Today
How Vulnerable is Your Network?
Performing a Network Health Check
Objectively understanding your network and producing actionable results to streamline vulnerability prioritization and remediation
Scheduled for LIVE broadcast April 24, 2008 at 2PM EDT/10AM PDT
Register Today
Supporting Federal Network Transitions: Maintaining Availability, Security, and Compliance while addressing Networx, IPv6 and the Trusted Internet Connections Initiative
Agencies face numerous mandated deadlines over the coming months, in the move to Networx, adopting IPv6 and in addressing the U.S. Office of Management and Budget (OMB)’s Trusted Internet Connection (TIC) initiative, among others. Networx Transition, IPv6 adoption and planning for TIC have something in common; they are major transition initiatives which require complete visibility into network connectivity and behavior, so that the demands of change can be balanced with security, availability and policy compliance imperatives.
The question then becomes: How do you plan for and accomplished all that is being asked of your agency within a reasonable timeframe without running over budget or overlooking any of the crucial network connections that must be accounted for? It can be nearly impossible to manually to gain an idea of which assets need to be monitored and managed. Meeting these requirements requires that you find a single, comprehensive solution that enables you to gain a complete understanding of your network environment in order to close knowledge and security gaps.
In this webcast, you will learn about key transition success factors and best practices for scoping requirements and anticipating risk. You will discover how to:
- Assess your organizations’ current infrastructures and capabilities
- Plan, well in advance of the OMB deadlines, a roadmap that accurately reflects the current picture of your infrastructure, focusing on gaps between policy and defenses
- Accurately estimate needed infrastructure changes, including device upgrades and reduction of Internet connections
- Limit unwanted connectivity or other security risks during the changeover and after the transition
- And more
Networx Transition Best Practices
The transition to Networx represents the largest service migration ever undertaken by the federal government. With less than 6 months remaining in the recommended timeframe for agencies to have transition plans in place, agencies have a pressing need to develop requirements for the move based on a complete analysis of their current asset inventory, as well as clear definition of operational needs. Failure to deliver the requirements on time, will significantly impact an agency’s ability to receive reimbursement of transition costs.
An accurate network baseline is an essential component of a Networx transition. Understanding what devices and security controls are on the network - and how they are configured throughout the transition and post-transition - is critical for maintaining security and availability while in the process of shifting to Networx.
Preparing for IPv6 - Assuring the Self-Defending Network: Today and Tomorrow
Building a Self-Defending Network to reduce risk through greater automation of information security is critical to delivering next generation e-gov solutions while improving FISMA scores. Yet organizations often lack visibility into network connectivity and behavior required to eliminate gaps in security architecture and proactively eliminate threats. Experts from Cisco and Lumeta show you why measuring risk from a network perspective is an important complement to your existing system and data level security efforts, and how you leverage this information as part of a complete information assurance strategy.
IPv6 Transition Best Practices
Experts from Cisco and Lumeta present critical migration success factors and best practices for assessing readiness and risk. To plan IPv6 migration, without introducing risk into the infrastructure, organizations must “begin with the end in mind.” This means that IT organizations need an accurate picture of their IPv4 network including network assets, and the connections across the enterprise or between enterprises and beyond. Agencies require network visibility to identify inadvertently enabled IPv6 resources, as well as to determine if connectivity between IPv6 devices and other resources creates vulnerabilities. Understanding what devices and security controls are on the network – and how they are configured throughout the migration lifecycle – is critical for maintaining security while in the process of IPv6 migration. All of these questions need to be answered as part of a thorough migration readiness assessment.
Network Assurance & Regulatory Compliance: Closing the Gap between Policies & Defenses
In this Webcast, Khalid Kark, Senior Analyst for Forrester and experts from Lumeta discuss how measuring and quantifying risk from a network perspective supports ongoing compliance initiatives.
Demonstrating the effectiveness of security controls is a critical component of all leading policy frameworks such as COBIT, NIST, and ISO17799 - as well as the industry specific mandates they support, such as FISMA, Sarbanes-Oxley, PCI, HIPAA, and BASEL II. In reality, these “controls” are nothing more than the network and security devices that define boundaries and limit traffic. Unfortunately, most organizations fail to measure the effectiveness of security controls based on how traffic moves across the enterprise or between enterprises and beyond.
Network Assurance:
The Missing Piece of the Risk Management Equation
Paul Stamp from Forrester Research discusses the importance of an emerging paradigm known as network assurance. Network assurance complements host and device based security solutions to round out the risk management equation by measuring the impact of network change on security, availability, and compliance. Experts from Lumeta Corporation will then present actionable strategies for building a network assurance program.
Enterprise Security & Vulnerability Managment:
A Progress Report - How does your enterprise measure up?
In this webinar, guest speaker Charles Kolodgy (Research Director, Security Services, IDC) discusses IDC's 2005 Enterprise Security Survey. The discussion probes how enterprises are planning, improving, and maintaining their protection against security threats - and how that has changed over the years. Experts from Lumeta explore solutions to evolve an organization's network security approach.
IPsonar and Network Risk Asssessment
Matt Hagovsky, Managing Consultant for Lumeta, as he discusses how a Network Risk Assessment can highlight network anomalies, vulnerable devices, insecure Internet access, and a network's true perimeter.
|
 |
