Corero's IPS Enables Security for Sarbanes-Oxley Compliance
The Sarbanes-Oxley Act (SOX) was enacted to improve investor confidence in the integrity of corporate disclosures and financial reporting. Information technology is vital to internal control over financial reporting and retention of sensitive corporate information.
Given the ubiquitous role of computers in the use and storage of financials records, compliance requires each publicly traded company to implement and rely on secure network and information technology solutions.
The internal control reporting mandates associated with Section 404 of SOX requires each public company to file an annual internal control report as part of its annual report. This signifies management's responsibility to evaluate the effectiveness of internal control over financial reporting. Without IT involvement, it is impossible to demonstrate that a company has effective internal controls.
Section 409 requires rapid disclosure of information concerning material changes in the financial condition or operations of the company. Again, effective IT systems will enable management to sign off on information that is being disclosed to the financial markets rapidly with comfort and security.
From a security perspective, these material events include the identification, mitigation and disclosure of cyber attacks resulting in possible breach of financial information or network intrusion to the company's infrastructure. A lack of control over IT security impacts the enterprise's financial reports and risks violation of Section 404.
The corporate IT infrastructure enables financial and business transactions and information to be carried across the corporate network and Internet. Criminals, competitors and others who would use this information to their advantage can remotely exploit vulnerabilities in this infrastructure to steal confidential information and/or modify systems.
Corero's Intrusion Prevention System
Corero's top-of-the-line intrusion prevention system (IPS) solution protects the corporate network from unauthorized access, malicious content and distributed denial-of-service (DDoS) attacks against financial servers and networks. Corero's IPS provides the strongest levels of protection against threats such as:
- Content-based attacks, including worms, Trojans, viruses and exploits of critical vulnerabilities
- DDoS attacks
- Unauthorized access of sensitive resources and data.
Regulatory Compliance Audit Management for SOX, HIPAA, GLBA, and FISMA
Corero's IPS enables compliance with SOX internal control and rapid reporting mandates by securing confidential information and systems while assuring continuous availability of the network and access to information for customers and employees.
Corero delivers the most comprehensive, most effective intrusion prevention available, detecting and blocking both known and unknown attacks, without impacting network performance. Corero's IPS is a transparent, in-line security appliance that provides unmatched intrusion detection capabilities through a unique combination of protocol behavior analysis supplemented by signature-based detection.
Corero's IPS is remarkable for the lowest latency and highest reliability of any IPS on the market. Multiple appliances can be deployed in ProtectionCluster mode, which simultaneously dramatically boosts performance and provides high availability in the very unlikely event of appliance failure.
IPS Controller software provides central management of multiple Corero IPS appliances, allowing customers to administer policy, updates and granular control in distributed environments.
- Provides proper auditing, monitoring, logging, and reporting of security events for rapid identification and response to a material event, and forensic analysis.
- Enables regulatory compliance through protection of confidential data
- Stops remote exploits of critical vulnerabilities
- Keeps spyware, viruses, botnet programs and other malware out of the network
- Thwarts advanced hybrid and application-level attacks
- Protects VoIP infrastructure
- Blocks DDoS and other botnet-based attacks
- Prevents undesired access
- Proactively protects against threats while patches are being tested and deployed
- Improves security posture through acceptable application usage enforcement
- Reduces IT hours devoted to fixing/remediating systems infected by viruses, botnets and malware
- Reduces downtime and impairment of business systems and websites from DDoS attacks and botnet threats
Corero's IPS uses a state-of-the-art, multi-tiered architecture that couples our industry-proven protocol validation modules (PVM) with data validation modules (DVM) that inspect file content regardless of the protocol over which the files are being transported. This approach requires fewer filters which means we can deliver new protection more quickly while dramatically reducing the incidence of false positives compared to other IPS technologies.
Corero's IPS provides First Line of Defense®, combining deep packet inspection and analysis to prevent intrusions, stateful firewall filtering to protect against unauthorized access, and DDoS defense. The solution is built on the redoubtable Core Platform providing the power, extensibility and flexibility that distinguish Corero's Intrusion Prevention System (IPS) and DDoS Defense (DDS) products in the market. This platform, comprising a powerful Tilera 64-core processor and the CoreOS, is the foundation on which Corero developers and engineers have built and continue to build out a cohesive and integrated suite of network security products.
Corero's Network Security Analyzer (NSA) provides security event management, flexible reporting for both simple and complex, distributed environments in which multiple IPS appliances are deployed, compliance audit lifecycle management, real-time alerting, enterprise-wide IPS security intelligence, and forensics and investigative root cause analysis. Corero's IPS also supports leading SIEM solutions, so events from Corero's solutions can be seamlessly integrated into enterprise security information management processes.
Corero customers are assured they have the latest protection through Corero's Threat Update Service, which provides automated updates against the latest threats to their organizations. Each update includes detailed information about the new threats and recommendations that allow enterprises to make informed decisions about applying the updates in their unique IT environments.
Dedicated to making our customers' successes our success, Corero offers an integrated solution of technology, services and support to protect the business in a hostile environment with minimal management overhead and minimal impact on productivity and network performance.
Corero's First Line of Defense offers protection against unwanted traffic. It stops undesired users/services, DDoS attacks, protocol violations, and targeted server attacks, providing greater visibility into the traffic entering your network. Corero's IPS is a key component of an effective SOX compliance program, helping an organization strengthen controls protecting financial records and dramatically improving its security posture with minimal impact on precious corporate resources.