1 / 14

Solidcore Harness the Power of Change

Solidcore Harness the Power of Change. Case Study:. John Sebes CTO Solidcore Systems, Inc. What Solidcore Does. Situation Operations and Security are at a cross roads Business Drivers Frequent change is affecting IT service levels – including unknown and possibly malicious change

gwidon
Download Presentation

Solidcore Harness the Power of Change

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. SolidcoreHarness the Power of Change Case Study: John Sebes CTO Solidcore Systems, Inc.

  2. What Solidcore Does • Situation • Operations and Security are at a cross roads • Business Drivers • Frequent change is affecting IT service levels – including unknown and possibly malicious change • Compliance initiatives stress IT/business linkage • Key Insight • Change drives complexity & cost! • Frequency of changes • Changes outside process • Multi-org. change coordination • The Solidcore Value • Provides complete and proactive control of change in the production environment • Works at the device-level and ties infrastructure change to IT processes and policies • Augments existing configuration management and IT workflow systems

  3. Customer: PACE • Profile: Pace Suburban Bus Service • Pace Suburban Bus Service - 14th largest bus service in the U.S. - 1,500 employees - 600 buses • Pace provides bus and van service for six Chicago-area counties • MIS department has a centralized data center with limited support staff - performs large amounts of data analysis - responsible for software requests and communications - datacenter system maintenance

  4. Customer: PACE • The Problem • Servers needed patching every other day to try to stay one step ahead of all the security threats • Need to provide 24x7 service availability - aren’t staffed for 24x7 • Patching alone was stressing ability to maintain SLAs

  5. What are Pace’s Technical Requirements? • Low on-going operational costs • Scale deployments at fixed and predictable cost • No policies or rules to setup • No policies to update on an ongoing basis • Reduce security related patch cycles • Low performance overhead • Minimize security risk • Protection from malicious code execution • Zero Day attacks, mass attacks worms, viruses, Trojans, etc • Prevent internal threat • Control what can be installed and run on remote systems.

  6. Why is Securing Pace’s Environment so Hard? • Operational Effectiveness • Current security products are operationally intensive, making scaling to large deployments expensive • Performance overhead can be significantly high • Operationally intensive “Patching” is becoming the solution of choice • Risk Minimization • Understanding prevalent level of risk for current investment • Implemented policies do not keep pace with IT growth or Zero-day attacks, especially for remote/distributed systems • Level of protection erodes over time. • Internal threat is not accounted for

  7. Protecting Pace: What’s being Optimized? Degree of Prevention/Detection HIPS AV Enterprise Eval Pilot Department Deployment Scope with fixed ops cost (customization, tweaking, maintenance etc) per machine

  8. Introducing S3 Security™ Solidcore S3| security Operations-centric security based on change control • Deploy & Forget Security • No requirements for initial or on-going configuration, rules, signatures or learning • Minimal Performance Overhead • Installs easily with minimal system overhead • Unauthorized Code Cannot Run • Categorical protection from external threats including zero day attacks, mass attacks worms, viruses, and Trojans regardless of vector of attack • Internal Threat Protection • Maintains administrative flexibility while protecting authorized software configuration

  9. Protecting Pace: Protection with Fixed Ops Cost S3 Security Degree of Prevention/Detection HIPS AV Enterprise Eval Pilot Department Deployment Scope with fixed ops cost (customization, tweaking, maintenance etc) per machine

  10. 0 Identify Disk Image Current, Gold or Audited Image 1 2 Solidified Production Mode Control Assured Initial Solidification Initial System Inventory Created 3 Solidified Production Update Mode Updated System Inventory 4 Updated Solidified Production Mode Control Assured Solidcore’s Innovation: Solidification™ Production State Deployment State Enable Update Mode Disable Update Mode

  11. S3 Security is Practical Solidification™ “Deploy and Forget Protection” No initial and on-going configuration No false positives or negatives Practically no performance overhead Very small footprint

  12. Customer: PACE • The Solidcore Value • "Solidcore is a godsend.” Bob Lescaleet, MIS department manager at Pace Suburban Bus Service • With Solidcore, if patching is needed, it can be done on Pace’s schedule. • Solidcore’s installation was a breeze and, once running, is transparent to operators.

  13. Thank You

  14. Prevention & Detection with Solidcore

More Related