Content

RedSeal Systems Network Advisor & Vulnerability Advisor v4.2

RedSeal Systems develops security posture management solutions that allow organizations to assess and strengthen their cyberdefenses to quickly adapt to ever-changing threats and business conditions. The solution reviewed consisted of RedSeal's Network Advisor and Vulnerability Advisor v4.2.

The offering is provided as software and as an appliance. The software version is supported on 64-bit Windows Server or Sun JRE 6.

Unlike systems that detect attacks after they occur, RedSeal identifies risky holes in infrastructure before they are discovered by hackers, allowing organizations to address issues proactively.

RedSeal software analyzes the complex interaction of firewalls, routers, load balancers and hosts, delivering in-depth understanding of the overall security posture. This allows continuous compliance with various mandates. One of the strongest aspects of this offering is its ability to analyze network controls and correlate that data to scanner results, thus ranking vulnerabilities based on their exposure to untrusted networks (i.e., can this threat reach a network and, if so, is there a vulnerability there for it to exploit).

There were a lot of attractive features that caught our eye. There is a "what-if" analysis capability that can assess a change and show users what can be exposed down to the rule and vulnerability. By understanding which vulnerabilities are truly exposed, versus those that are mitigated by firewalls or other controls, RedSeal allows organizations to rapidly prioritize remediation efforts to address those issues that represent the greatest risks.
Product title
RedSeal Systems Network Advisor & Vulnerability Advisor v4.2
Product info
Name: Network Advisor Description: Price:
Strength
Strong integration, nice best practice and downstream impact capabilities. Very useful risk map with great visualization for the security team.
Weakness
Might be nitpicking, but it does lack incident management and some compliance down to control- level capabilities. However, it does integrate to those systems.
Verdict
This is a capable IT risk management tool. For what it does, it performs well.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds