Proventia Management SiteProtector System

• Reduces the cost and complexity of security management through central control of diverse network and host security devices.
• Enhances risk communication through event analytics and flexible, customizable reporting.
• Leverages existing investments by integrating with current systems.
• Provides flexibility to expand to support additional types and functions of security offerings.
• Create reports easily using pre-defined templates.
• Demonstrate Vulnerability Differentials by contrasting asset vulnerabilities for two distinct periods of time.
• Perform basic customization with built-in filtering and sorting options.
• Set permissions to allow users to generate and view reports for specified groups only.
• Export to PDF, HTML and CSV formats.
• Schedule reports to run daily, weekly, monthly or during off-peak hours.
• View reports covering ticket reports for workflow, content and e-mail filtering reports, and Virus activity reports.
• Escalate important events by generating additional responses outside the console (such as email or SMTP), or can de-emphasize less important events by reducing alert priority or by selectively preventing an event from being displayed or logged.
• Transfer SiteProtector centralized management system functionality to a secondary site in the event of catastrophic failure, network outage or disaster affecting your primary site.
• Operating systems supported: AIX, i family, Linux, Macintosh, System/36 and System/38, Windows, z/OS

IBM Proventia® Management SiteProtectorTM system offers a flexible, one-stop security management system to command and control a broad array of network security agents and devices required to monitor and measure your exposure to vulnerabilities and demonstrate regulatory compliance. It can reduce the burden of your IT security team by unifying the management of IBM security platform offerings across gateways, networks, servers and desktops, as well as select third-party security solutions. Backed by, and integrated with the IBM X-Force® research and development team with its tools, online security information and security updates, the SiteProtector system can help minimize your overall risk and increase efficacy of your security team with maximum cost efficiency.

• Highlights:
  • Reduces the cost and complexity of security management through central control of diverse network and host security devices
  • Enhances risk communication through event analytics and flexible, customizable reporting
  • Leverages existing investments by integrating with current systems
  • Provides flexibility to expand to support additional types and functions of security offerings

• With the SiteProtector Reporting Module, you can:
  • Create reports easily using pre-defined templates
  • Demonstrate Vulnerability Differentials by contrasting asset vulnerabilities for two distinct periods of time
  • Set permissions to allow users to generate and view reports for specified groups only
  • Export to PDF, HTML and CSV formats
  • Schedule reports to run daily, weekly, monthly or during off-peak hours
  • View reports covering ticket reports for workflow, content and e-mail filtering reports, and Virus activity reports

• With the SiteProtector SecurityFusion Module, you can:
  • Escalate important events by generating additional responses outside the console (such as email or SMTP), or can de-emphasize less important events by reducing alert priority or by selectively preventing an event from being displayed or logged.

• With the SiteProtector SecureSync Module, you can:
  • Transfer SiteProtector centralized management system functionality to a secondary site in the event of catastrophic failure, network outage or disaster affecting your primary site

Managing your security infrastructure is never an easy task, but when you're trying to manage multiple devices, security vendors and compliance regulations, it can seem impossible. Over time, the cost and complexity of securing your organization can rise substantially, without a corresponding decrease in your exposure to security risks and noncompliance. Valuable resources are continually diverted from revenue-gathering projects while your IT staff spends hours on day-to-day administration.

The SiteProtector system helps reduce operational costs by automating and simplifying tasks such as setting policies, applying updates, scanning and enabling protection. From a single interface, you can monitor events and manage all of your IBM ISS technologies, including network and host intrusion prevention, scanning, desktop security and multifunction security. With just one system to deploy, learn and maintain, one vendor to turn to for support and one management console to control your security infrastructure, this innovative solution can help you reduce the costs and complexity associated with security management and free your IT staff to focus on other critical projects.

You can organize your security devices within the SiteProtector system and create custom-defined groupings for an enterprisewide risk perspective of assets, threats and vulnerabilities. The SiteProtector system includes advanced features to help you correlate and prioritize near real-time vulnerability and threat information to help you quickly assess the information that's most critical or relevant to your environment—enabling IT staff to focus on your greatest risks. You can also use the SiteProtector system to increase the priority level of alerts and reduce console and database clutter by discarding details of unsuccessful attacks. The SiteProtector system facilitates a robust roles and permissions model to help you delegate responsibilities among various team members. Site administrators can use a Web browser from virtually any location to grant selected users the ability to perform certain functions. For example, administrators may allow some users to see and operate security devices located in a certain geography, while limiting others as read-only users without the ability to change security policy.

The SiteProtector system can help you quickly identify and communicate potential threats, and assess your security posture by enabling you to:

Easy-to-use, customizable reporting capabilities let you sort information by virtually any parameter and provide auditors and regulators with critical information. The SiteProtector system also allows you to make timely adjustments to policies. Guided analysis capabilities help transform even the new security analyst into a knowledgeable expert, taking the guesswork out of event analysis and aiding your security analyst with logical investigation paths to quickly get to the cause of an issue.

A broad array of reports—both predefined and customized—within the SiteProtector system can allow you to identify and document:

SiteProtector reporting capabilities not only help ease compliance measures, but they can also provide specific details regarding security breaches. Reports on asset security, vulnerability remediation and trends provide an enterprise view of improvements to your security posture over time and help enable intelligent, cost-effective decisions regarding your network. A forced versioning feature within the SiteProtector policy editor helps enable automated tracking and logging of policy history to further reduce the burden of change-control compliance.