Entries Categorized as 'Next-generation Security Infrastructure'
by Neil MacDonald | August 27, 2011 | Comments Off
VMware quietly disclosed it has acquired PacketMotion in this recent blog post by Dean Coza of VMware. We identified PacketMotion as a cool vendor in Gartner in this 2009 research for clients. Essentially, PacketMotion uses standard Intel-based hardware appliances (as well as a virtualized probe implementation that runs inside of virtualized environments) to deliver full [...]
Category: Next-generation Security Infrastructure Virtualization Security Tags: Adaptive Security Infrastucture, Context-aware Security, Next-generation Data Center, Next-generation Security Infrastructure, VMware, vShield, vSphere
by Neil MacDonald | August 24, 2011 | 1 Comment
As I research into the future of adaptive security infrastructure, I am convinced that the future of information security lies in software, not hardware. If you think about it for a bit, most of information security policy enforcement is in the form of software already – it’s just embodied (entombed?) in physical hardware. Unfortunately, the [...]
Category: Cloud Cloud Security Next-generation Security Infrastructure Virtualization Security Tags: Adaptive Security Infrastucture, Cloud Security, Context-aware Security, Next-generation Data Center, Next-generation Security Infrastructure, Virtual Appliances, Virtualization Security
by Neil MacDonald | July 11, 2011 | Comments Off
I’ve been absent from blogging for 2 weeks – first we had the Gartner Information Security Summit in DC and then I took some time off for a much-needed vacation. We spent some time at Hilton Head Island in South Carolina. They’ve got a pretty amazing flat beach where the difference between high tide and [...]
Category: Beyond Anti-Virus Information Security Next-generation Security Infrastructure Tags: APTs, Beyond Anti-Virus, Defense-in-Depth, Information Security, Next-generation Security Infrastructure, Security-Summit-NA, Systematic Workload Reprovisioning
by Neil MacDonald | June 23, 2011 | Comments Off
I’m here at the Gartner Information Security summit on the fourth and final day. We had a record number of attendees – at least 1700 by my estimate. Attendees have the ability to book one on one conversations with the analysts and my schedule was completely full. One of the conversations with a client was [...]
Category: Information Security Next-generation Security Infrastructure Virtualization Tags: Adaptive Security Infrastucture, Beyond Anti-Virus, Endpoint Protection Platform, Information Security, Next-generation Security Infrastructure, Security-Summit-NA, Systematic Workload Reprovisioning, Virtualization Security
by Neil MacDonald | June 17, 2011 | 3 Comments
One of the toughest problems in information security is addressing advanced intrusions that have bypassed traditional security controls and now reside undetected on enterprise systems. With financially motivated attacks and state-sponsored “advanced persistent threats” both on the rise, intrusions can remain undetectable for extended periods of time. We have reached a point where our systems [...]
Category: Beyond Anti-Virus Next-generation Security Infrastructure Virtualization Virtualization Security Tags: Adaptive Security Infrastucture, APTs, Beyond Anti-Virus, Defense-in-Depth, Next-generation Security Infrastructure, Security-Summit-NA, Virtualization, Virtualization Security, Windows
by Neil MacDonald | June 16, 2011 | Comments Off
It sounds counterintuitive, but today’s advanced threat environment requires new approaches to the ongoing security and management of server and desktop workloads. The trouble with Advanced Persistent Threats is that, by definition, they have evaded our traditional network and endpoint security controls and now reside undetected in our IT Systems. How many advanced intrusions will [...]
Category: Beyond Anti-Virus Next-generation Security Infrastructure Virtualization Virtualization Security Tags: Adaptive Security Infrastucture, APTs, Beyond Anti-Virus, Defense-in-Depth, Next-generation Security Infrastructure, Security-Summit-NA, Virtualization, Virtualization Security
by Neil MacDonald | June 6, 2011 | Comments Off
I’ve been researching the intersection between virtualization and security for several years. Like security and cloud computing, virtualization and security is also following a maturity curve. The first several years were discussions with clients on how to deploy virtualization securely. Over the past 2 years, I’ve had an increasing number of calls on the virtualization [...]
Category: Next-generation Security Infrastructure Virtualization Virtualization Security Tags: Next-generation Security Infrastructure, Virtualization, Virtualization Security, VMsafe, VMware, vShield, vSphere
by Neil MacDonald | May 31, 2011 | 3 Comments
The term “trust” is too binary for the world of business and IT we are moving into. Trust sounds black and white / all or nothing. Either I trust you or I don’t. The reality is far more complex and a world of information security decisions based on shades of grey, not black and white. [...]
Category: Cloud Cloud Security Next-generation Security Infrastructure Tags: Adaptive Security Infrastucture, Cloud Security, Context-aware Security, Information Security, Security-Summit-NA
by Neil MacDonald | May 24, 2011 | Comments Off
I’m attending Symantec’s worldwide analyst conference in New York City today (24 May 2011). Symantec’s CEO, Enrique Salem, kicked off the morning with a discussion of Symantec’s role in the changing world of IT and information security. Enrique called out five megatrends that are challenging our preconceptions about the role of IT and information security: [...]
Category: Cloud Cloud Security Information Security Next-generation Security Infrastructure Virtualization Virtualization Security Tags: Cloud Security, Information Security, Next-generation Data Center, Next-generation Security Infrastructure, Security-Summit-NA, Virtualization Security
by Neil MacDonald | April 27, 2011 | 3 Comments
I’ve made the argument before that complete information security protection requires a combination of prevention and detection. Further, I believe we have overinvested, become overly reliant on and dangerously complacent with our preventative capabilities. The result is we are exposed and are woefully underinvested in our detection capabilities. At first, my assertions may sound counterintuitive. [...]
Category: Beyond Anti-Virus Information Security Next-generation Security Infrastructure Tags: Adaptive Security Infrastucture, Cloud Security, Defense-in-Depth, Information Security, Next-generation Security Infrastructure, Security-Summit-NA
