Image

“Identifying what’s on your network is a basic information security best practice that, unfortunately, remains difficult for many organizations. If you don’t know what you are protecting, it’s very difficult to apply the most effective controls. And it’s even more difficult to recover effectively if you are exploited.”We found that while our customers are actually implementing both basic and fairly advanced capabilities for securing their assets with Tripwire products, they were often missing the discovery component that ensures they're actually covering all the assets they have. And it's not just existing customers who have this challenge. As Michael Oberlaender, CSO, puts it,
“The first step in any effective security program is to know exactly what is on your network because you can’t protect it if you don’t know it’s there. In order to protect those assets you need appropriate anti-malware defense mechanisms and you need to be able to detect all changes and reconcile them against an authorized change list. If you have all three of these pieces in place you have the baseline information you need thwart attackers using threat intelligence feeds and other, more proactive measures."One of the challenges we find with customers who are new to Tripwire is that they're not sure what's in their environment to start with. That makes it hard to deploy any new controls effectively. They are missing that first step. It's these two customer needs for the same functionality that led us to release the Tripwire Asset Discovery Appliance. We think it will help customers continuously discover what's on their network so that they can more effectively secure and protect their assets. Title image courtesy of ShutterStock