SANS Institute

the most trusted source for computer security training, certification and research

SANS Approach to Vendor Exhibitions

Details from May 2004 NewsBites Subscriber Survey

The following demographic information was collected in a survey of NewsBites subscribers in May 2004, and amply demonstrates why NewsBites subscribers are a group that security vendors need to be reaching:

Q1. When did your organization last purchase a security solution?
One month ago - 30%
Three months ago - 20%
Six months ago - 18%
Nine months ago - 7%
More then 1 year ago - 24%

Q2. What was your level of input in selecting the product chosen?
Solely my decision - 25%
I had equal say to other decision makers - 32%
My advice was considered - 23%
Minimal involvement in deciding - 19%

Q3. When do you plan to purchase your next security solution?
< 1 Month - 9%
1-3 Months - 26%
3-6 Months - 26%
6-12 Months - 23%
> 12 Months - 16%

Q4. How many users are in your organization?
> 20,000 - 14%
5,000-20,000 - 14%
1,000-5,000 - 19%
500-1,000 - 8%
250-500 - 12%

Q5. Has your organization budgeted for security solutions in the next 18 months?
Yes - 66%
No - 17%
I don't know - 16%

Q6. What is your primary source of information on new security solutions?
e-Newsletters - 20%
Reviews on the web - 29%
Info from vendors - 19%
Analyst reports (e.g. Gartner) - 11%
Magazines - 9%
Trade Shows - 1%
Other - 12%

(Those who answered “other” indicated the following):
Trial version tests
All sources including referrals
Mix of SANS sources and Web Publications
SANS newsletters
Everything I can get my hands on!
Reviews, listserves, e-news of all kinds
All sources mentioned as well as peers
Internet based research
Use multiple sources to evaluate
Combination of given choices
Internet
Training courses-SANS
Multiple sources - web, trade mags, etc
friends
info from trusted sources
web, trade shows, team research
Peer information -- esp in mailing lists
market survey
Colleagues - IT Company
Cert & SC Mags
Project Experience
Indip. Analysts, Newsletters, vendors
we use many sources including vendors
Personal Research / Reports / Demos
borrow the equipment and test it
RSS Newsfeeds
In-house research from multiple sources.
Peer Groups, Forums, Web sites
Security Experts at wpmedia.com
We are an ITSec vendor
Newgroups and word of mouth
web
Contacts within and without the company
unknown; decentralized organization

Q7. What is the biggest security challenge you are currently facing?
The following responses can loosely be categorized as “Human problems” – management, users, budget, etc.

1.People Turnover 2.Resource Constrains 3.Training
A spoiled user community that insists on no restrictions. (read normal security policies here!)
Apathy. Users don't care; management doesn't care. Everyone wants the FEELING of security; the ILLUSION of security. No one wants to do what must be done to actually achieve a reasonable level of security.
Awareness
Balancing security with ease-of-use
Carried-in laptops and external VPN/RAS users infecting networked systems
Convincing that good security requires resources.
Convincing users to follow guidelines
Costs approved by management.
Creating a good security monitoring and response environment.
Creating a security organization culture
Ease of access during travel while maintaining security against penetration
Education of users
Employee education
Employees
End user education
Establishing manageable policies, procedure & processes
Event management
Extremely limited (almost nonexistent) budget.
Finding follow-ups on DOD security issues lacking!
Fraud
General staff awareness of security.
Getting management to understand low tech security risks, like stolen laptops, “lended” passwords or various social engineering attempts. Their solutions are mostly in the “should be more careful” area. High tech risks are better to convey, peculiarly.
Getting support from Senior Management to put controls in place.
Getting the $$$ for good products
Highly decentralized organization; every dept does its own thing, or not
HIPAA Compliance, balancing security with clinical workflow.
Home users/laptops
Identity Theft
Implementing and enforcing newly developed security policy across a geographically diverse corporation.
Implementing formal security policy & risk analysis based infosec program
Information leakage.
Internal - unpatched computers, users installing unauthorized (unsafe) software and rouge wireless access points, etc.
Internal compliance
Internal resources and funding
Internal Threats.
Internal users
Internal violations of policy
Internal worm fears
Internal: inside-& out
Keeping everything up to date with fixed financial resources and a limited number of technical staff members. Especially difficult in an environment where it is a significant problem to schedule down time.
Keeping out viruses and keeping my users from opening malicious e-mails
Keeping up
Keeping up with all the information about security and understanding when the information applies to me!
Keeping users trained.
Keeping work-at-home users safe.
Lack of management support for security policies
Lack of security plan
Laptops and ID10T users
Management
Management Apathy
Management buy-in and support.
Non supportive management
Organizing our IH Team, and being able to effectively determine when an Incident has occurred.
patch management, virus blocking and customers misbehavior
Personal privacy concerns/challenges
Providing security without severely impacting user productivity.
rapidly expanding access of atypical users -- users wanting data access for reasons other than the system was originally intended -- thus, controlling their access while maintaining customer satisfaction is a big issue. Further, building new customer needs into the legacy system while maintaining our current security posture is becoming difficult.
Regulatory Compliance
Security Awareness (3 identical answers)
small budget for security solutions
Spyware on the desktop. Spyware is social engineering it's way in via smiley buttons and backgrounds for wallpaper. Educating users and trying to mitigate the problem is
student users
Stupid users ;)
System security assurance and maintenance: ensuring home users are patched, keeping all systems up to date, etc.
talent and being aware of issues
that we don't have any money to protect ourselves - proactively or reactively
Third Party vendors, consultants and developers with access to our network
Time and resources to set policies and implement security controls. Its taken time to convince executive management of the need for more security. Now that they're onboard I still need more time and resources to actually execute the above security work.
Time expended to generate corporate levels risk assessment reports from various data sources.
Time to work on IT security issues in respect to the other responsibilities that have a more operational priority to them
To have the business leaders appreciate why secure practices are important. Changing the culture.
Training
Unable to get buy in from upper management
Unrestricted privileges of system administrators
user practises
User training.
User using remote access (VPN)
Users bringing in viruses from home. Unpached servers on our network but not directly unter our supervision.
Users education
Users entering the network through VPN and bringing malware or other dangerous situation sinside our perimeter defenses.
Windows laptops brought in from user's homes.

The following responses can loosely be categorized as “Technical problems” – specific security threats, products needs, etc.

Unauthorized peer-to-peer
Ability to flex with various OS
Access Control
Access control to systems
Access from home without putting the network at risk
Allowing outside access to information while ensuring that data integrity is maintained.
Allowing users to VPN from non-company systems while maintaining adequate virus protection.
Anti virus management
Anti-virus
Application level security
Asset management
Attackers using combinations of “scanning” methodologies to establish a “profile” of a potential IT target.
Auditing Clients to ensure they have adequate security
Authentication - we are too small to afford a single sign on solution
Balancing features with stability.
Blended Threats
Centralizing and correlating logs from multiple devices.
Centralizing logs.
Change Control
Completing security audit
Compliance with the HIPAA final security rule and appropriate documentation.
Complying with HIPAA
Configuring our IDS so we do not have false positives nor do we miss any violations or hackers out there. Basic Policy management and detecting significant findings that bring value to our Security operations.
Consolidation of security products between two companies
Containing or eliminating viruses and other malware at the gateway.
Customer Access
Data classification and privacy controls
Detecting intrusions/security incidents/worms and reacting to them.
Detection and prevention of malicious code.
Determining the best solution for the dollar
Determining the proper level of security layers at an educational institution (Medical School) where HIPAA compliance is an issue. For example, how “tight” should our DMZ be and which workstations and servers are appropriate for the DMZ.
Either vulnerability management or HIPAA security. (We are a health system).
E-mail and content filtering.
Email Spam possible server hacking
Email viruses windows in general :-)
Email-based viruses & worms
Emails
Encryption of data
End of the budget year...
Ensuring integrity of internal systems.
Enterprise protection from Spyware.
Establish a firewall (Fortigate)
Evaluating and testing patches in a timely fashion
Expanding demand for remote access to the network and for access by partner organizations
Getting certified VTC equipment for classified sessions.
Getting ready for HIPAA security rule and keeping the network free of viruses and malware.
Hackers probing the firewall with scans and exploits.
hacking modem
Hacking our Mainframe!
Hiding out an OWA Exchange Server without exposing any MS server to the internet.
HIPAA compliance
Host and application security/hardening in addition to traditional firewall filters.
Identity management (4 identical answers)
Identity Management Web Services
Identy and access authentication for remote users for single sign-on
IDS
Implementing an effective patch management solution.
Implementing HIPAA security requirements, and setting up our first IIS installation
Implementing various technical security controls
Inadequate compliance scanning software
Inbound content filtering
Information management for 200+ IDS across four different vendors and hundreds of sites
Integrating options into a consolidated solution.
Integrating policies after being acquired by another company
Integration and Streamlining the different architectures.
Integration of our various security solutions
internal firewalling
Internal Security threats Virus/Malware
Interruption of service
Intrusion and system compromise
Intrusion Detection
intrusion detection/prevention
Intrusion detection/prevention
Intrusion Detection/Prevention Auditing Change Management Process Risk Management Vulnerablity Assessment
Intrusion Detection/Prevention, Log consolidation/management
intrusion prevention @ detection
Intrusion prevention, Viruses
Investment justification. ROI
keep crackers away from my servers
keep up security technology, keep up anti-spam
Keeping all of our windows workstations up to date with current patches.
Keeping systems and software with current patches
Keeping systems patched for vulnerabilities.
Keeping track of (logging, etc) with so many different systems. NT4, 2000, Linux, firewall boxes, IDSs, etc.
Keeping up with all of the new Patches and ensuring that all patches are applied in a timely manner to all machines.
Lack of network monitoring software that monitors the entire network.
Lack of standard solutions - need vendors to line up in this area - too much change means too much risk. No one wants to invest in throw-away technology.
Laptops and other systems introduced to network that are not up to snuff on vulnerability patches.
Limiting access to subsets of information.
Local Admin rights policy
Log consolidation and alerting from security devices
Lowering of exposure to Remote Access users.
Maintaining necessary user access to systems while limiting all unnecessary access.
Making sure network stays secure
Making sure security solutions are fully utilized and kept up to date.
Malware
Malware
Malware from Internet
Malware spam
malware,trojans,worms,virus
Management of Enterprise Security
management, spam, antivirus, updating
Managing a public facing web farm most of our challenges are network-based attacks. A close second is poor coding practices and no time for code review of web-base applications.
Managing and maintaining the security settings and patch levels of disparate platforms including those outside of the direct control of central IT
Managing so many environments and their border and intrusion detection devices and the associated logs.
Managing software on network endpoints.
matching planned changes to changes completed.
Meeting the changing requirements within budget and time constraints with limited resources.
Microsoft OSes
Microsoft vulnerabilities (2 identical answers)
Microsoft vulnerabilities
Microsoft Windows and Spyware.
Microsoft Windows, Full of holes
Mixing strong Data Cryptography needs with weak wills to use cryptographic tools and strong passwords!
money issues
Multiple challenges: products that work together; clear & concise technical documentation not rebadged sales fluff; products that live up to the sales pitch; vendor support or lack thereof
My position provides a INFOSEC consulting service to other enterprise customers. Our clients likely most commonly faced obstacle is Patch management in heterogeneous environments where change control is not enforced.
Netsentric Datacenter issues, e-mail security, Security issues on our web- an application servers on the Internet.
Network monitoring to determine weaknesses, vulnerabilities and points of attack; intrusion detection/prevention.
New and unknown danger.
new firewall
Non-secure network access to secured data networks (ie, RAS)
Non-standardized OS's
Outlook and IE
Outside intrusion.
Password and access management
Patch Management (10 identical responses)
Patch management and security scans that show false positives.
Patch management for network equipment
Patch management is still the biggest headache even though we have a product in place.
Patch Management of the various OS's, Spam, Wireless Security
Patch management solutions
Patch Managmeent and virus
Patch mgmt - Risk Assessment - automated dbase
Patching
Patching of workstations and servers on a regular basis.
Patching Windows
Perimeter controls are no longer effective measures, must provide stronger internal immunity to vulnerabilities and ensure isolation of affected machines.
Perimeter IDS interface
Physical and Classified
Policies and PKI
Policy and Procedure Implementation
policy/guidelines
Pretty much have it under control. Worried about 0 day exploits that are able to beat OS vendors to the punch with patches.
priorities and $$$, i.e. the absence of any accepted, objective, scalable risk management methodology
prioritizing time to manage/monitor security.
Probably authentication products
product integration with third parties / partner security soultions
protect all the data in the desktops
protecting e-mail and web server
Protection of mobile computing devices regarding the transmission of harmful content when they are reconnected to the network.
Providing HIPAA compliant email solutions to small healthcare providers.
Providing network/security management servcies for industry, government, banking customers: mix and match of different customer policies vis-a-vis sharing our NOC resources to be cost-context to cope with.
Remediation and reporting. Reacting to imminent threats before they impact the organization.
Remote access
Remote Access
Remote access solutions and Patch remediation.
remote access systems inproperly protected.
Remote access users on dialup connections.
Remote Access. The powers-that-be are constantly extending VPN access but I don't have means to secure external systems.
Remote user security
Remote users
Remote workers introducing malware
Review and installation of an IDS and Antispam
Sarbanes-Oxley
Sarbanes-Oxley
Sasser virus spreading around the network. Hidden trojans.
secure email
Secure remote access for increasing # of travelling/remote users
Securing a new web site for company clients.
Securing Remote access
Securing remote access by telecommuters
Securing remote users and enabling remote access from uncontrolled systems
Securing remote users computers.
Securing the communications between our offices in three different countries.
securing Windows XP, firewall security
security event correlation and remediation
security system in Hotel resort with cameras connected directly to the ethernet system
Senior Management support for information security solutions expenditures.
shared desktop machines
Simply keeping up with the patches for all our mission-critical web apps. SANS newsletters are a crucial part of our ability to do so.
Single Sign On and LDAP configuration
Single Sign-On and Risk Management
sophisticated attacks
Sophisticated world of hardware and users.
SOX
spam & worms
SPAM (6 identical responses)
spam (i include this within security) virus/worms (end user education)
spam and phishing scams
Spam and probes
spam and spyware
Spam PDA security Laptops used on company network, at home and on the road
Spam, adware, spyware and malware
Spam, Patch Management, Adware, SpyWare,
Spam, Virii
Spam, viruses that generate false bounce backs (more spam)
SPAM/VIRUS/Hackers
Spam; keeping ws/servers patched; fighting worm/virus laden e-mails
Spreading the message, that internet security really matters to everyone.
SpyWare and IE weaknesses in general.
spyware and malware
Spyware, Spam and Viruses
spyware/mobile devices
Standards actually being “standard”
Staying ahead of current threats
Staying ahead of the curve.
supporting proprietary products with security holes
System patching
The integration of logical security and physical security. Unique audit system using an integrated audit data model.
The virus/ malware infection rate. This forces us to have a layered architecture in place together with policies and procedures.
Threats from the public Internet.
to stop the traffic spam
Trojans
Unauthorized use of the network. We are a school system that supports a wide variety of platforms. This fact has made it difficult to implement any controlled access on the internal/private network.
Understanding the audit processes for the many types of devices that exist.
Unpatched/virus-infected systems connecting to the network
Untrusted users (public access workstations) on internal “private” network. Need internal segmentation and auth/access controls.
Updating Windows
User provisioning (3 identical answers)
Vendors with bad default installations, + patchmanagement
Viruses/worms (20 identical answers)
Visa and Mastercard certification requirements.
Vulnerability and patch management
We need an IDS.
We run OpenVMS systems so we don't have to worry about a whole host of issues that people managing other OS's do.
web application security
Web Site security and Privacy
WEP and Wireless Sniffers
Who's who on the wire, just by looking at their IP address/machine name?
WiFi, Roming users (Remote / VPN) and their patch management
Windows patch management
Wireless (6 identical answers)
wireless access
wireless integration
Wireless, VPN

Q8. Are there any products you are evaluating right now? If so, specify:

ACID and netreg
Air Defense, Blue Socket, Air Fortress, Air Magnet, Fluke
Anomaly-based IDS (Lancope) Firewall module (Cisco) VPN module (Cisco)
Anti-virus for samba servers
Applains by check point
Application FW
Arcsight Event Correlation
Astaro Security Linux 5
audit logs consolidaiton.
AVG Commercial 7.0 e-virus computer assiociates
Bigfix Qualys
Bindview and Pedestal
Black Ice
Bluecoat
BorderManager primarily for segregating our network, since once a worm gets in the perimeter firewall Can't help (licensing model allows us to deploy as many firewalls as we want)
Borderware/Ironport Bluecoat
Brutus Will be looking at ISS Site Protector or Dorian Software Creations
CBT courses
Checkpoint Firewall NG Trend Micro Sourcefire Open Options DNA for physical security
Checkpoint interspect Netcontinuum
CheckPoint NG AI Entrust - various apps
Checkpoint Secure Client Nessus IDS ZoneLabs Integrity SSH
Checkpoint VPN-1
Cisco
Cisco CSA
Cisco CSA, IDS
CISCO firewall/vpns
Cisco Pix
Cisco Security
Cisco Security Agent
Cisco Self-defending networks. E-eye Retina Scanner v5.0
Cisco VPN Concentrator
Ciscoworks2000 VMS Cisco IDS Cisco PIX KVM over IP
Client firewall solutions
Continuous review for products that provide cost effective tools or services for security requirements. We currently employ Harris Corp STAT Scanner, Citadel Security Hercules Remediation tools as well as Symantec Secure Application Gatewal, Surf Patrol, Mail Sweeper and Symantec Anti-Virus (at both server and workstation).
csa
Currently evaluating different e-mail encryption products.
Currently looking at alternative “in-house produced” alternatives
Database Penetrations testing tools, Application Penetration Testing Tools
Documentation Management for HIPAA Security
Easy NetIQ
eEye Enterprise Suite (already use Scanner) PGP Enterprise Encryption McAfee A/V for Internet Gateway Cisco Security Agent Security Event Management
ELM Enterprise Manager from TNT Software for log consolidation and auditing compliance. Sunbelt Network Security Scanner from Sunbelt Software.
encryption
End Point Security Products Intrusion Prevention Products
Enforcing desktop policies for remote users Facilitate hotfix and patch distribution via SUS or similar, but not without switching a mandatory test bed in between, and still being up-to-date as much as possible (contradiction)
EnGarde hardened Linux solutions.
Enterasys ASM, new Checkpoint firewalls, air magnet, wireless gateways,...
enterprise antivirus, testing environments
Enterprise Data Correlation
E-safe
eTrust Admin, PointSec
Expanded use of RSA tokens for remote access. Citrix for remote access Constant external vulnerability assessment tools
Expanding one time key solutions (token cards)
Firewall/IDS solutions based on Netscreen/Juniper.
Firewall/IDS/VPN solution
Firewalls SSL-VPN appliances
Firewalls to replace previous schemes.
Firewalls, I& AM, ids, antivirus and content filtering
For WLAN's AirMagnet vs. Cisco WLSE (rouge access point detection)
Forensic Application, ProDiscover
Free Operating System Utilities
F-Secure
Funk Steel-Belted RADIUS Funk Odyssey client FreeRADIUS New 3Com “Tank” firewalls Watchguard Firewall X products
GFI Languard, PatchLink, SUS.
GuardedNet and ArcSight for Security Information Management
GWAVA GWIZ
had just finished using @stake's audit services
Hard Disk Encryption, Patch Management Solutions, Personal Firewalls
Harris Stat
HFNetChkPro
hosted application services that decrease onsite security requirements
I do lead those evaluations. We are looking at a program that will push patches to Solaris, linux, MS Windows 2000/XP, and Mac OS X
IDPs
IDS correlation database Risk Assessment database
IDS probes; event correlation and root-cause analysis tools
IDS solutions
IDS systems
IDS Systems, Vulnerablity assesment products, VPN's
IDS, IDP, Vulnerability scanners, Application scanners(WebInspect)
IDS/IPS Solutions Log Management Solutions
IM Detector.
I'm in the process of setting up a nessus server to monitor the network for vulnerabilities.
Intrusion detection, anti-spam, client security (client FW/IDS)
ipolicy, Tipping Point unity one
IPS
IPS vs IDS (I like Forescout...IT manager thinks it is too expensive
IPS, ESM
IPS, SSL VPN
ISS Proventia A and G
ISS RealSecure / SiteProtector Snort Dragon
Just finished eval of 4 Enterprise Scanner products. Tenable, Foundstone, Retina, ISS.
Kaspersky Antivirus
Kryptiq RASAM Symantec Managed Security Cisco
LanGuard Monitoring
LANGuard Network Scanner v5
Latest web filtering and reporting
Log management
Looking at Content filtering, Spam Filtering, Firewall replacements, NAS with integrated security, Router Firewalls, Routers, etc....
Looking into Content filtering solutions to control internet traffic.
Lucent
Mazu Networks - profiler Checkpoint upgrades Checkpoint's network based Zone Alarm products Various IPS solutions
McAfee
Mcafee EPO
McAfee web appliance
McAfee's ThreatScan and System Compiler, SMS, Intrushield IPS
Microsoft ISA, SurfControl
Mobotix and Axis cameras and software on linux server for recording
MS ISA server as means for remote access to Exchange w/o VPN. I seek a solution to ensure remote systems meet security policy.
MS ISA Server, Snort
Multiple patch management solutions, host based intrusion detection solutions, and vulnerability assessment tools.
NAI McAfee Security's AVD with spyware prevention/detection software extensions and Intrushield intrusion-prevention hardware solutions.
Neoterris SSL vpn
Netegrity IPM solutions
Netegrity SiteMinder
Netscreen IDP
Network Associates Suites
Network Assoiates/McAfee Security IDP inline network security sensor
Network IDS Identity Management Centralized logging
Network Instruments Expert Observer Suite, plus some type of SNMP monitoring suite (freeware/shareware?)
Network Intelligence SEM tools
Not sure of all of them. I am looking at Akonix, Websense, and DYS for blocking IM traffic.
NOVEL LDAP
Ongoing
OSSIM - Open Source Security Information Management System SGUIL - A tcl/tk interface for network security monitoring
outsourced network intrusion monitoring
Packet sniffers, network analysis software.
password-resetting products
Patch management Adware products Spyware products
Patch management, desktop management (not really security solutions, but certainly will benefit in minimizing risk).
PatchLink Update ISS Internet Scanner Retina NetInstall
PDA security sw File encryption for laptops
penetration testing and prevention
Peregrine Network Manager
Personal firewall products
Personal firewalls
Personal Firewalls for laptops
PGP corporate desktop
Policy & Awareness products
ProDiscover DFT
ProVisor - Vericept - Vontu - Vormetric ProofPoint and others
QRadar
Remote access solutions: Checkpoint Secureclient Various personal firewalls Cisco PIX / NOkia Small office vpn solutions.
Retina v5.0 Languard v5.0 ISS Proventia
Retina, Avantail, Citrix SSO
Right now we are looking at some SPAM filters.
Risk Watch
Securify
Security Assessment
Security Log Management Vulnerability Scanner
Security monitoring tools with an ability to tell us a lot about all traffic, plus IDS/IPS capabilities.
SELinux components in Fedora Core 2, and encryption/security enhancements in Kernel 2.6. Presumably this stuff will wind up in the next release of Red Hat Enterprise Linux.
Sitekeeper
SMTP filters anti SPAM
Snort
SNORT
snort
snort 2.0 Nessus update
Snort as a new addition to our existing infrastructure
SNORT for IDS/IPS on Wintel hardware with Linux. Also, a secure email system like ZixMail to encrypt email communications.
SOC
sonic wall
SonicWALL
SourceFire RNA, ISS Proventia, and an Incident Response management software kit (don't remember vendor)
Spam Filter - Barracuda & modusGate
Specter IDS ProDiscover Forensics
Spybot, Adaware and the Retina 5.0 beta.
SSL VPN for the enterprise
SSL VPN solutions
SSL VPNs, newer firewalls, security audit
StoneGate
SUS/WUS Shavlik HF Net Check
Sygate Secure Enterprise.
symantec antivirus, firewall appliances (checkpoint), new mail filtering from Trend Microsystem and Looking at a variety of HIDS solutions
Symantec Gateway Security Appliance
Symantec version 9
Symantec Vulnerability Assessment CA Security Command Center Tivoli Risk Manager
Symantec ManHunt
Tally
Tipping Point
Tipping Point Cisco Security Agent
TippingPoint, Cisco Okena, McAffee IPS, Sourcefire RNA
Tipping-Point, Threat Guard, Net Continuum, Retina, Saint, Citadel
Trend
Trend Micro antivirus/antispam and content filtering products.
Trendmicro VirusWall
Trendmicro's IMSS
Tripwire
Tripwire TND
Updating Snort Nagios and Cacti to latest editions
Vanguard
Verisign authorization/authentication solutions Cisco solutions for SSO and protection of data classifications with IPSEC
Versign MSS
VPN Clients
VPN, Firewalls
VPN/Firewall
Vulnerability Assessment tools
Vulnerability Scanners
Waiting for future products
We are solutions providers to customer we need to have all the latest news about security products
Web/e-Mail filtering.
Wireless
Wireless Security
Wireless Vulnerability Management tools (CA's VM)
Cisco's CSA
Symantec Trend
Cisco PIX.
Enterprise Gig IDS and HIPS/HIDS
Mostly firewall products
We are evaluating new appliances which incorporate spam and/or anti-virus services.
IPS - solutions for ISS, NAI, and DeepNines. AV- Symantec, NAI.
Webinspect from spidynamics, Sourcefire RNA, Intellitactis NSM, Sourcefire IDS.
biometric devices
Zen 4 Servers for SNMP alerting
ZN Face
ZoneAlarm, new ADSL router
"IHateSpam", Brightmail (due to Symantec connection); rolling out VPN's to remote users

top^

Check Them Out!

SANS provides the best education you will ever find.
-Mike Gauthier, Heartland Business Systems