IBM's integrated security framework

August 2012 Information Security

To address the increasing need for an integrated security offering to deal with the growing security threats businesses face, IBM launched IBM Security Systems (ISS) late last year following its purchase of Q1 Labs. Joe Ruthven, business unit executive, IBM Security Systems, IBM Middle East and Africa, spoke to Hi-Tech Security Solutions about the new division.

Joe Ruthven
Joe Ruthven

Ruthven says the company had security products in its software portfolio before the Q1 acquisition, but not an integrated Security Information and Event Management (SIEM) system that could consolidate security threats in real-time. Now there is a single brand with a single team behind the security drive.

There are for key trends in the market driving the need for an integrated security offering in business, according to Ruthven. These are:

* The explosion of data in all areas of business, much of it not being secured appropriately.

* Nobody can deny the growth of mobile computing and this is creating a serious security vulnerability. Users are far too trusting when it comes to downloading apps and business must take the appropriate measures to protect itself.

* Cloud computing is also creating a headache for businesses and consumers as they adopt strategies that could see their data held by third parties in a variety of locations.

* Attacks on business IT are also increasing, not only in frequency, but also in sophistication. It’s no longer malware or kids having fun, but organised crime is profiting from hacking attacks, making hacking in its various forms the third most lucrative crime in the world.

These trends, among others have made security a pressing concern for business, a concern ISS is addressing through its unified offering. Ruthven says there are four dimensions to ISS’s service.

* People: Companies need to ensure the right people have access to the right privileges and access to do their jobs efficiently, but they also need to ensure that the wrong people don’t have access to information they don’t need, or may want to access for nefarious purposes.

* Data: Securing data is somewhat lower on organisations’ priorities, but with mobile and cloud services becoming more popular, as well as the rise of ‘big data’ along with governance requirements, managing your data is becoming more important than ever.

* Infrastructure: Business is good at securing its infrastructure, but securing the perimeter is no longer enough to protect from attacks.

* Applications: Applications are also under pressure, not from an access perspective, but also regarding how they behave. Again, this is especially relevant in the mobile space.

To support its security service, IBM also has its X-Force research team that monitors the security market. Its IBM X-Force Trend and Risk Report is produced twice per year and provides statistical information about all aspects of threats that affect Internet security, including software vulnerabilities and public exploitation, malware, spam, phishing, Web-based threats, and general cyber criminal activity.



Credit(s)




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Alarms are smarter than ever
Spectrum Security Products Technews Publishing SMART Security Solutions Arxtech Perimeter Security, Alarms & Intruder Detection
Modern smart alarms are evolving beyond simple sirens and basic alerts. They now include features such as system health checks, remote management, real-time notifications, mobile apps, and multiple communication options.

Read more...
From the editor's desk: The high price of cheap
Technews Publishing News & Events
Bringing fire and safety, along with intrusion and perimeter protection, into the same publication is an interesting exercise. At their core, all these systems exist for one reason: to warn people ...

Read more...
Fire safety in South Africa
Technoswitch Fire Detection & Suppression Technews Publishing SMART Security Solutions Editor's Choice Fire & Safety Security Services & Risk Management
Fire safety is sometimes ignored, sometimes relegated to whatever is cheapest, and sometimes treated with the seriousness it deserves, given that it focuses on protecting life and assets.

Read more...
Preventing and suppressing lithium fires
SMART Security Solutions Technews Publishing Editor's Choice Fire & Safety Security Services & Risk Management Smart Home Automation
SMART Security Solutions asked Clyde Becker, director of Pyro Brand, for some insight into the mechanics of lithium-ion battery fire risks, especially thermal runaway, and to define a comprehensive, layered approach to fire detection and suppression.

Read more...
Integrated layers offer dependable security
OPTEX SMART Security Solutions Technews Publishing Perimeter Security, Alarms & Intruder Detection Integrated Solutions
A layered approach to security tightens protection and minimises downtime and operational risk. Moreover, integrating all the parts of a solution and proving they can do the job before spending money are critical.

Read more...
Cybersecurity needs actual intelligence before artificial intelligence
Information Security AI & Data Analytics
Cybersecurity depends on interpretation. A tool can tell you that something unusual has happened, but people need to determine whether it is a genuine risk, the business impact, and how to respond without causing unnecessary disruption.

Read more...
Duxbury Cybersecurity sharpens reseller offering
Duxbury Networking Information Security News & Events
Duxbury Networking has strengthened its Duxbury Cybersecurity business unit by adding WatchGuard and Cynet, giving South African resellers broader, more integrated coverage for the security risks customers are now asking them to address.

Read more...
Echoes of 2018? Follow-up on Woolworths explosions
Technews Publishing News & Events Security Services & Risk Management Retail (Industry) Facilities & Building Management
SMART Security Solutions follows up with Jimmy Roodt to find out more about an old connection to the Woolworths bombings from 2018. The investigation remains ongoing.

Read more...
NEC XON detects and stops ransomware attack
NEC XON Information Security IoT & Automation
Ransomware attacks rarely begin with chaos. More often, they start quietly, with probing, mapping, and patient reconnaissance inside a target’s network. That was the situation facing a global recruitment firm when cybercriminals attempted to navigate its systems.

Read more...
Sara AI Pentesting available in South Africa
Information Security News & Events
Synack and Wolfpack Information Risk are offering Sara AI Pentesting to organisations across South Africa, helping companies move from point-in-time testing to continuous security validation with AI and human expertise.

Read more...










While every effort has been made to ensure the accuracy of the information contained herein, the publisher and its agents cannot be held responsible for any errors contained, or any loss incurred as a result. Articles published do not necessarily reflect the views of the publishers. The editor reserves the right to alter or cut copy. Articles submitted are deemed to have been cleared for publication. Advertisements and company contact details are published as provided by the advertiser. Technews Publishing (Pty) Ltd cannot be held responsible for the accuracy or veracity of supplied material.




© Technews Publishing (Pty) Ltd. | All Rights Reserved.