SSL White Papers

Government agencies confront an increasingly hazardous IT security environment. According to the federal Government Accountability Office (GAO), the number of reported security incidents increased by more than 650 percent during fiscal years 2006 - 2010.1 At the same time, government agencies have widespread deficiencies in security controls, leading to vulnerabilities, undetected breaches and insider fraud.

Sophisticated cybercrimes and advanced persistent threats are occurring at an alarming rate. Aided by new attack techniques, increased financial support and the ease of exploiting social connections, attackers are having more success than ever before. Traditional security solutions are no longer sufficient to defend against these escalating threats.

Boost threat protection and compliance with an integrated investigative reporting system

Over the past year, the IT security space has had numerous mainstream headlines. From the discovery of sophisticated tool kits with ominous names like Flame to cross-platform zero-day vulnerabilities, both consumers and corporations were inundated with advisories and alerts regarding emerging threats.

This white paper discusses how security intelligence addresses these shortcomings and empowers organizations—from Fortune. Five companies to midsize enterprises to government agencies— to maintain comprehensive and cost-effective information security.

Organizations expect their network security to be able to keep pace with network demands and detect threats in real time. And when it comes to security incident response, every second counts. The McAfee solution combines leading technologies in intrusion prevention systems (IPS) and security information and event management (SIEM) for a risk-based, highly contextual security program—all with the fastest available performance to ensure real-time action.

This white paper highlights the importance for CISO's to address the new types of web threats and other targeted attacks and how improving and automating security operations can create an appropriate security strategy to replace the ineffective existing security technologies.

This whitepaper will demonstrate how implementing the McAfee solution to assess vulnerability, provides comprehensive, risk-based vulnerability assessment for your organizatin to help you manage the 400 new vulnerabilites per month with the fewest possible resources.

This whitepaper highlights the need for organizations to demand more from their SIEM solutions, which should aim to reduce complexity and be fast and easy to use in order to address the requirements that legacy SIEMs can no longer fulfil.

This whitepaper provides information on comprehensive security and risk management strategies which in turn will help your organization: Achieve meaningful situational awareness through rich context and analysis Diagnose and respond to incidents in seconds, not hours, to reduce damage, prevent data breaches, and lower remediation costs Experience fewer security and compliance incidents and lower per-incident costs Simplify compliance policy processes and reporting to improve operational ef!ciency Reduce the number of vendor platforms, hardware, and software used for security management Reduce training time and operational cost

If you are an IT security executive, this whitepaper will demonstrate how you can eliminate the uncertainty through continuous visibility and real-time managemet, when using McAfee Risk management solutions.

The following test scenarios are standard tests that AV-TEST does on a regular basis for network-based antimalware solutions. The solution provides two ways to stop malware at the network level today. These are signature-based detection options that protect against known vulnerabilities and malware, and heuristic/generic detection options which work on both known and unknown vulnerabilities and malware, including Zero-Day.

McAfee Security Management solutions merge security products, management, and real-time intelligence to make your security effective for your business. It starts with deep integration within the system stack and across the IT environment. We add global, contextual visibility into changing events—within and beyond your organization’s boundaries—and connect all your systems with a cross-product command and control core.

NSS Labs performed an independent test of the McAfee Network Security Platform (NSP) M-8000 v6.1. The product was subjected to thorough testing at the NSS Labs facility in Austin, Texas, based on the Network Intrusion Prevention methodology v6.2 available on www.nsslabs.com. This test was conducted free of charge and NSS Labs did not receive any compensation in return for McAfee’s participation.

Chief information officers (CIOs) at enterprises worldwide are facing a major struggle today: how to balance competing priorities from business units and IT. They have been mandated to protect the enterprise from every angle and maintain compliance while supporting business momentum and reducing costs.

A web application scanner isn’t much good if it cannot detect common and current vulnerabilities. While no automated scanner is as effective as a properly trained security tester, strong coverage of vulnerabilities is essential. The Web Application Assessment Module contains industry-leading vulnerability detection capabilities. In addition to out-of-the-box coverage, McAfee Vulnerability Manager is backed by the world’s leading vulnerability and threat research organization, McAfee Labs™, with more than 400 dedicated researchers covering the globe. McAfee Labs continually feeds McAfee Vulnerability Manager new vulnerability information and content.

McAfee® EDB is the only data management system specifically designed from the ground up to satisfy the unique requirements of the SIEM/logging market. It has features and capabilities that contribute to its uniqueness and suitability for the SIEM/logging market. Several of these features and capabilities are described in this document to help you understand why McAfee EDB is the leading data management solution for SIEM/logging.

Security Management 2.0: Time to Replace Your SIEM? takes a brutally candid look at triggers for considering a new security management platform, walking through each aspect of the decision, and presenting a process to migrate – if the benefits outweigh the risks.

Most enterprises are struggling with the breadth and diversity of the constantly changing threat landscape, the number of assets they have to track and manage, and knowing where to best direct their limited time and resources. McAfee Vulnerability Manager has the flexibility, scale, coverage, accuracy, and performance suited to any organization

Automating security monitoring has proven essential in today’s threat environment, and to succeed, today’s SIEM must have the right database back-end and must offer security intelligence that leverages contextual data.

This report takes a look at the enterprise threat landscape as it stands in 2013. What areas should you be sitting up and paying attention to? What areas can you afford to pay a little less attention to? We try to cover off all those questions and more. We hope you find the information inside useful as you step up your fight against the bad guys by deploying good technologies and best practice.

Organisations sometimes view data retention as purely an IT issue. However, this paper highlights why data retention is a significant business issue for organisations and why data retention should be addressed by the boards of organisations rather than being left to the IT department alone.

The result is the annual Symantec Internet Security Threat Report, which gives enterprises, small businesses, and consumers the essential information to secure their systems effectively now and into the future.

“Security intelligence” is a term that is commonly used within the information security community, but one that often lacks clarity and definition.

Forward thinkers’ best practices to enhance productivity, spur innovation and reduce costs