Some say timing is everything, so HP’s call for rethinking security strategies – and releasing a number of new products and services – coming on the heels of a new report from Enterprise Strategy Group saying a major transition is coming to endpoint security, is nothing if not serendipitous (although finding a day that doesn’t have a security-related report, product release or event would have been the real challenge). Actually, the computer giant’s announcements coincide with this week’s HP Protect 2013 event in Washington.
Regardless of the timing, HP said enterprises aren’t facing a single attacker, they are fighting a well-organized, well-funded adversary marketplace. Add in the facts that an organization extends well beyond its four walls with an ecosystem of suppliers, devices that can go anywhere, and the Internet, and the risks and complexities of protecting the flow of information — both internally and externally — are huge.
“All the folks dealing with breaches and attacks, they’re losing more than they’re winning,” said HP’s Frank Mong, VP and GM, Solutions, Enterprise Security Products. They’re losing because they are focusing on the wrong enemy, he said.
The right enemy – a global cybercrime black market with a value of $104 billion per year — has been forming a more sophisticated and collaborative marketplace through which they share information and advanced data theft tools, stated HP. Almost all (92%) Forbes Global 2000 companies reported data breaches in the last 12 months. Evolving regulatory and legislative requirements are further adding to enterprises’ security burden, with an estimated average cost of noncompliance at $13.7 million for global organizations, and bring your own device (BYOD) means IT no longer controls the endpoint.
According to ESG’s new report:
-62% of security professionals strongly agree or agree with the statement: “Host-based security software (i.e. antivirus) is effective for blocking/detecting older types of malware but it is not effective for blocking/detecting modern malware (i.e. zero-day malware, polymorphic malware, etc.);
-52% strongly agree or agree with the statement: “Our continued use of traditional host-based security software (i.e. antivirus) is driven by regulatory compliance for the most part;
-36% strongly agree or agree with the statement: “Commercial host-based security software (i.e. antivirus) is more or less the same as free security software; and,
-51% of enterprises claim that adding new layers of endpoint security defenses is part of their security strategy for the next two years.
HP’s approach to security disrupts the life cycle of an attack with prevention and real-time threat detection, from the application layer to the hardware and software interface, said Mong. It brings a lot to the security market, he said.
“We collect about 21 billion events a day. Nobody can come close to HP. We have a history of respect within the security industry, and about 3,000 independent researchers searching for vulnerabilities.”
One element of the the company’s announcements is HP Threat Central, a crowd-sourced security intelligence platform. HP’s goal and vision is get all of its customers onto this so they can protect themselves, he said.
“Our grand vision is that the world uses this to fight the adversary. It’s a multi-billion dollar business that is attacking us. You can do it on your own, but the chances of winning is poor. Collectively we can do better.”
Speaking of timely and firewalls like one of the other new offerings, HP TippingPoint Next-Generation Firewall (NGFW), a recent report from Infonetics Research found that network upgrades are forcing enterprises to buy faster firewalls. “Without a doubt, the move to faster network technologies is forcing enterprises to look at upgrading every moving part of their IT infrastructure, firewalls included,” explained Jeff Wilson, Infonetics principal analyst for security. “Many enterprise buyers are eyeing firewall products with 100G-plus aggregate throughput and support for 40G and 100G ports over the next year.”
Upgrading to high-speed network interfaces on security appliances was named as the #1 driver for investing in high-end firewalls by over 3/4 of enterprises surveyed. Security leads the list of criteria for selecting a high-end firewall supplier by a wide margin, and 57% of respondents plan to spend $500,000 or more on high-end firewalls in 2014, signifying a shift to higher spending categories. Infonetics expects 2013 to bring market share changes as Fortinet, Check Point, Palo Alto, and Dell SonicWALL get their high-end firewall offerings into more data center and large campus deals while Cisco and Juniper continue to fend off challengers.
Talking to customers, security is very much top of mind, said Mong, and HP is making a statement with these announcements that it is “investing everything into security. We’re all in. I think we have to.”
The Fiddly Bits
-HP Threat Central, community-sourced security intelligence platform to facilitate automated, real-time collaboration among organizations in the battle against active cyberthreats;
-HP TippingPoint Next-Generation Firewall (NGFW);
-HP ArcSight Application View, HP ArcSight Management Center, HP ArcSight Risk Insight and HP ArcSight Enterprise Security Manager (ESM) v6.5c;
-HP SureStart self-healing technology that automatically restores a system’s PC Basic Input/Output System (BIOS) to its previously safe state if attacked or corrupted;
-HP Supplier Security Compliance Solution;
-HP Continuous Monitoring for the U.S. Public Sector;
-HP Distributed Denial of Services (DDoS) Protection Services; and,
-HP Security Risk and Controls Advisory Service for Mobility.