Light Dark
March 20, 2015 By Rohan Ramesh 3 min read
Endpoint
Intelligence & Analytics
Incident Response

There are about 240 million calls to 911 every year in North America, according to the National Emergency Number Association. Of these calls, it is estimated that roughly 15 percent to 20 percent are nonemergencies. Operators have only a few seconds to assess the risk associated with the call, pinpoint the caller’s location and send emergency services to the scene. With only limited resources, they have the critical task of ensuring they dispatch emergency services to the calls that need the most urgent help first.

Cyberthreats might not be life-threatening, but they still need to be stopped before they cause significant financial and reputational damages to an organization. You need a security system that can detect an attack, prioritize risks and respond within minutes to shut down an attack or vulnerability that could compromise your endpoints and data.

The following is a five-step process powered that will ensure you have an effective system that can detect and respond to advanced threats in minutes:

1. Continuous Insight Into Every Endpoint

Your data is no longer limited to on-network endpoints. As global organizations and mobile workforces grow, you need to continuously protect and monitor every endpoint, no matter if it is located on or off your network, in real time.

2. Enforce Continuous Policy Compliance

Enforcing continuous compliance on your endpoints with security and regulatory policies ensures there are no configuration drifts that can open up windows of opportunity for cybercriminals to take advantage of and infiltrate your data. Traditional scan-based technologies need to be traded in for a continuous compliance model.

3. Stop Malware Proactively

Antivirus, OS and application vendors require knowledge of malware before a signature or patch can be issued. IBM Trusteer Apex prevents malware before signatures or patches are created by applying an integrated, multilayered defense that breaks the attack chain and preempts infection. This keeps you one step ahead of cybercriminals.

4. Accelerate Risk Prioritization

The ability to prioritize the most important risks on your endpoints is increasingly crucial. You must be able to identify the most vulnerable endpoints that need to be fixed first to prevent or stop an attack that can cause widespread damage. Even more compelling is the ability to accelerate this risk prioritization, since every minute that passes during an attack can exacerbate the damage caused.

Having continuous insight into the compliance status of all your endpoints allows the event management system to only focus on vulnerabilities and risks that apply to your endpoints, thereby accelerating the time to identify and fix the most important problems first.

5. Real-Time Incident Response

As with any security system, the ability to respond to a threat within minutes is as crucial as being able to identify and pinpoint the threat. A real-time incident response system lets you do just that. IBM BigFix, with its automatic quarantine and custom remediation capabilities, gives you the ability to find and fix problems within minutes, no matter the type, location, connectivity or bandwidth of your endpoint.

Infirmary Health System

Given the black market for stolen user data and personal health records, the need to secure data is even more prevalent in the health care space. A health record is sold for an average of $50 on the black market, while a stolen Social Security number can cost as little as $1.

For instance, at Infirmary Health System, the largest not-for-profit hospital in Alabama, it often took IT administrators up to two months to apply software patches or deploy new applications across the organization’s more than 4,000 work stations. Likewise, consolidating and correlating security events from disparate data sources for investigations and auditing took days or weeks.

Working with ESM Technology, Infirmary Health System deployed a comprehensive security intelligence and endpoint management solution from IBM that uses advanced analytics to automatically identify and rank valid security threats while responding to them in real time to remediate vulnerabilities and stop cyberattacks.

Image Source: Flickr

 |  |  |  | 
Rohan Ramesh
Senior Product Manager

More from Endpoint
October 30, 2023

Virtual credit card fraud: An old scam reinvented

3 min read - In today's rapidly evolving financial landscape, as banks continue to broaden their range of services and embrace innovative technologies, they find themselves at the forefront of a dual-edged sword. While these advancements promise greater convenience and accessibility for customers, they also inadvertently expose the financial industry to an ever-shifting spectrum of emerging fraud trends. This delicate balance between new offerings and security controls is a key part of the modern banking challenges. In this blog, we explore such an example.…

October 19, 2023

Endpoint security in the cloud: What you need to know

9 min read - Cloud security is a buzzword in the world of technology these days — but not without good reason. Endpoint security is now one of the major concerns for businesses across the world. With ever-increasing incidents of data thefts and security breaches, it has become essential for companies to use efficient endpoint security for all their endpoints to prevent any loss of data. Security breaches can lead to billions of dollars worth of loss, not to mention the negative press in…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2024 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature