CISOs Can Easily Track, Measure and Report on Improvements in Cybersecurity Risk-Reduction With Interactive, Visual Dashboards

 

~Skybox Security’s attack surface history and trend data show progress toward security initiatives and compliance requirement~

Horizon2.0_Screens_v2
Horizon2.0_Screens_v2

 

New Delhi, India, November 24, 2016 – Skybox® Security, a global leader in cybersecurity analytics, has announced new product features available in the Skybox® Security Suite that give security teams the ability to easily track, measure and report on progress made in reducing and managing the attack surface (all the ways in which an organization’s IT systems are vulnerable to threats). The company also announced new capabilities for the Suite that enable security operations to automatically manage and track firewall change requests end to end, including: intelligent, proactive risk assessment of proposed changes; automated provisioning of changes; and validation that changes are implemented as intended.

Skybox® Horizon, the company’s award-winning attack surface visualization solution for the Skybox Security Suite, features new capabilities that give security leaders insight to how their organization’s security posture is improving or diminishing over time. Users can focus on specific sites within their attack surface (geographic locations, business units, etc.) and compare current risk levels with levels in the past. Full trend graphs are also available to show progress on mitigating indicators of exposure (IOEs) over time, including new, exposed or concentrations of vulnerabilities, unsecure device configurations and risky access rules.

“With its visual representations, Horizon has the unprecedented capability of showing at a glance what impact security efforts are having on an organization’s security state,” said VP of Products Ravid Circus. “Whether you’re tracking against strategic security goals or needing to meet strict compliance regulations, IOE history and trend data is a way to bring diverse, complicated metrics into a quickly digestible format.”

Circus predicts this feature will be particularly helpful to organizations preparing for new and upcoming regulations, such as the E.U. General Data Protection Regulation (GDPR), which goes into effect May 2018.

In addition to enhancements for Horizon, Skybox has bolstered the workflow of Skybox® Change Manager with automatic change implementation. After Change Manager runs a context-aware risk assessment of a proposed change, security operations can approve the request and automatically push the change to the staged policy. Change Manager also verifies that all changes are implemented in line with the initial request and provides a full audit trail.

“Most change management processes are complex, manual and error prone,” said Circus, “but with the Skybox workflow, those processes are streamlined. Changes are quickly assessed to see if they create network security gaps, expose vulnerabilities or violate security policies. Users, therefore, can be sure the automated provisioning won’t compound or create new security problems. This gives our customers more than an 80-percent reduction in time savings, freeing up their teams to focus on strategic tasks.”

Currently, Skybox offers automated change implementation for Check Point firewalls. The feature will be available for further firewall and security device vendors in the coming months.

 

About Skybox Security
www.skyboxsecurity.com

Skybox arms security leaders with a powerful set of integrated security solutions that give unprecedented visibility of the attack surface and key indicators of exposure (IOEs). By extracting actionable intelligence from data using modeling, simulation and analytics, Skybox provides the insight needed for security leaders to quickly address threat exposures and compliance issues across their hybrid environment. Our award-winning solutions for vulnerability and threat management and security policy management increase operational efficiency by as much as 90 percent, and are used by the world’s most security-conscious enterprises and government agencies, including Forbes Global 2000 companies.