----for the first time in the industry, information security practitioners can integrate external tools and applications into an IT GRC Software to provide a centralized Incident management solution----
Security industry practitioners are currently looking for security management solutions which make it possible for information security operators to integrate external tools and applications into the IncMan Suite, a complete incident tracking and management software for a centralized security incident management solution.
The need of this IT GRC solution is based on the need for a centralized coordination point for security professionals (from C-Levels to Responders and Investigators) to manage all forms of security incidents – both complex and simple. The new technology makes it possible for external tools and applications to be integrated into the Incident Management software. The capabilities of the new technology go beyond the integration of external tools into the software; the technology is customizable and almost every external tool and application in the security domain including various antivirus software products, security monitoring systems, security logging tools, firewalls and Intrusion Detection Systems (IDS) can be integrated into the IncMan Suite to provide a complete incident management solution.
This innovative advancement in the industry with a tool which can manage more than 170 different data categories provides information security professionals and incident responders the mechanism to perform real time monitoring and tracking of security events as part of security incident tracking and management operations. For instance, security managers will be able to monitor in real time, alerts generated by external intrusion detection systems and security monitoring devices. Also security managers can receive real time notifications of sensitive security incidents and alerts and respond quickly to them. The technology also provides the means for security operatives to import data from external tools and applications for further analysis. The picture below shows an example of the integration of ArcSight, a log management tool into the DFlabs IncMan Suite:
Fig. 1. IncMan Integration with ArcSight
Customers also need a Dashboard designed in order to render the maximum visual impact in a format studied for the immediate comprehension of security incident data using a combination of graphics, scales and visual indicators. The dashboard supplies other data related to all cases and incidents being managed.
A series of predefined models is already configured in the system such as those which allow to weigh direct and indirect impacts of a security incident.
Fig. 2. Dashboard Integrated into the IncMan Suite
The advantage of this pioneering development for information security professionals is beyond measure. Apart from the customization capabilities that the technology provides for security managers to integrate different tools and applications into the IncMan security management suite, the solution also makes it possible for security managers to incorporate different security tools and applications into a single Incident monitoring and tracking entity for effective security and Compliance management. At a time when the security industry is undergoing a rapid transformation, this technological breakthrough is a major relief for security practitioners in the management of their ever-growing security incidents.
This innovative development is a significant advancement in the security and GRC industry. For a long time security managers have craved for a system that will unify different security apparatus within the corporate, law enforcement and government departments. Only few vendors have already achieved such resounding success within the security management industry and the latest development will make the tool the leading brand in the industry.
DF Labs is exhibiting at Infosecurity Europe 2012 – the No. 1 industry event in Europe – where information security professionals address the challenges of today whilst preparing for those of tomorrow. Held from 24-26th April at Earl’s Court, London, the event provides an unrivalled free education programme, with exhibitors showcasing new and emerging technologies and offering practical and professional expertise. For further information please visit www.infosec.co.uk
About Professor Dario V. Forte, CFE, CISM, CGEIT
Dario Forte is the founder and CEO of DFLabs, a company he founded in 2003. As an information security professional for more than 20 years, he has provided consultancy for businesses and government departments around the world including Fortune 1000 companies, NASA and US Dept of Homeland Security. As a forward-thinking entrepreneur in the information security industry, Dario Forte has spearheaded the development of global information security products including the IncMan Suite, global incident management software; the Digital Investigations Manager, digital forensics acquisition tracking and case management software and PTK Forensics, computer forensics software. Dario Forte is currently serving as Adjunct Professor of the University of Milan in Italy.
About Albert Antwi-Boasiako, BA, Msc
Albert Antwi-Boasiako currently heads DFLabs operations in UK and EMEA as Information Security Consultant. A first class graduate with distinction in Forensics Information Technology from the University of Portsmouth, Albert contributes to information security technology development and has been assisting DFLabs clients across the globe to evaluate the company’s software products. Albert has also been collaborating on information security and computer forensics research at the University of Portsmouth.