Corero Protects Bank Customer Information for GLBA Compliance
The Gramm-Leach-Bliley Act (GLBA) requires financial institutions to ensure the security and confidentiality of customer records and related information, protecting them against threats, and unauthorized access. Federal banking agencies and the Federal Trade Commission (FTC) have provided guidelines for developing and implementing safeguards to protect the confidentiality, integrity, security, and availability of customer information.
GLBA requires each bank to implement a comprehensive written information security program that includes "administrative, technical and physical safeguards" to protect customer data. Technical safeguards should include appropriate network security technologies to enforce policy and protect financial institutions against malicious content attacks aimed at gaining unauthorized access to customer information, including but not limited to personal and business financial records, access to accounts, personally identifiable information (PII) and credit cardholder data.
Banks must therefore base their defenses to actively detect and prevent intrusions, not simply monitor and audit network activity, to meet their GLBA obligations and effectively reduce the risk of exposing sensitive information.
The matter goes well beyond compliance. The cost of information breaches is staggering. The Ponemon Institute reports that the average total cost of a single data breach was more than $7.2 million in 2010.
Cyber attackers have access to some of the smartest people and sophisticated, clever attack tools and malware. In many respects, they appear to have the upper hand in the continuous battle against security countermeasures. Attackers employ armies of infected computers (known as bots or zombies) in botnets that launch massive, automated attacks that scan enterprises for vulnerabilities and exploit them, usually to steal information.
Large and smaller banks alike require the best possible security solutions for GLBA compliance and to effectively reduce risk and protect their customer information from exposure and their business from unacceptable and unnecessary losses and brand damage.
Network-based intrusion prevention systems (IPS) must be an essential component of a bank's security and compliance program, as well as effective DDoS Defense to ensure authorized availability of customer information and unimpeded access to related online services.
Corero's Intrusion Prevention System
Corero's top-of-the-line intrusion prevention system (IPS) solution protects the corporate network from unauthorized access, malicious content and distributed denial-of-service (DDoS) attacks against financial servers and networks.
Corero's IPS provides the strongest levels of protection against threats such as:
- Content-based attacks, including worms, Trojans, viruses and exploits of critical vulnerabilities
- DDoS attacks
- Unauthorized access of sensitive resources and data.
Regulatory Compliance Audit Management for SOX, HIPAA, GLBA, and FISMA
Corero's IPS enables compliance with GLBA mandates for protecting customer data by securing confidential information and systems while assuring continuous availability of the network and access to information for customers and employees.
Corero delivers the most comprehensive, most effective intrusion prevention available, detecting and blocking both known and unknown attacks, without impacting network performance. Corero's IPS is a transparent, inline security appliance that provides unmatched intrusion detection capabilities through a unique combination of protocol behavior analysis supplemented by signature-based detection.
Corero's IPS is remarkable for the lowest latency and highest reliability of any IPS on the market. Multiple appliances can be deployed in ProtectionCluster mode, which simultaneously dramatically boosts performance and provides high availability in the very unlikely event of appliance failure.
The IPS Controller software provides central management of multiple Corero IPS appliances, allowing customers to administer policy, updates and granular control in distributed environments.
- Provides proper auditing, monitoring, logging, and reporting of security events for rapid identification and response to a material event, and forensic analysis.
- Enables regulatory compliance through protection of confidential data
- Stops remote exploits of critical vulnerabilities
- Keeps spyware, viruses, botnet programs and other malware out of the network
- Thwarts advanced hybrid and application-level attacks
- Protects VoIP infrastructure
- Blocks DDoS and other botnet-based attacks
- Prevents undesired access
- Proactively protects against threats while patches are being tested and deployed
- Improves security posture through acceptable application usage enforcement
- Reduces IT hours devoted to fixing/remediating systems infected by viruses, botnets and malware
- Reduces downtime and impairment of business systems and websites from DDoS attacks and botnet threats
Corero's IPS uses a state-of-the-art, multitiered architecture that couples industry-proven protocol validation modules (PVM) with data validation modules (DVM) that inspect file content regardless of the protocol over which the files are being transported. This approach requires fewer filters, which means Corero can deliver new protection more quickly while dramatically reducing the incidence of false positives compared to other IPS technologies.
Corero's IPS provides First Line of Defense®, combining deep packet inspection and analysis to prevent intrusions, stateful firewall filtering to protect against unauthorized access and DDoS defense. The solution is built on the redoubtable Core Platform providing the power, extensibility and flexibility that distinguish Corero's Intrusion Prevention System (IPS) and DDoS Defense (DDS) products in the market. This platform, comprising a powerful Tilera 64-core processor and the CoreOS, is the foundation on which Corero developers and engineers have built and continue to build out a cohesive and integrated suite of network security products.
Corero's Network Security Analyzer (NSA) provides security event management, flexible reporting for both simple and complex, distributed environments in which multiple IPS appliances are deployed, compliance audit lifecycle management, real-time alerting, and enterprise-wide IPS security intelligence and forensics and investigative root cause analysis. Corero's IPS also supports leading SIEM solutions, so events from Corero's solutions can be seamlessly integrated into enterprise security information management processes.
Corero customers are assured they have the latest protection through Corero's Threat Update Service, which provides automated updates against the latest threats to their organizations. Each update includes detailed information about the new threats and recommendations that allow enterprises to make informed decisions about applying the updates in their unique IT environments.
Dedicated to making our customers' successes our success, Corero offers an integrated solution of technology, services and support to protect the business in a hostile environment with minimal management overhead and minimal impact on productivity and network performance.
Corero's First Line of Defense offers protection against unwanted traffic. It stops undesired users/services, DDoS attacks, protocol violations, and targeted server attacks, providing greater visibility into the traffic entering your network. Corero's IPS is a key component of an effective GLBA compliance program, helping an organization strengthen controls protecting financial records and dramatically improving its security posture with minimal impact on precious corporate resources.