IBM delivers Security As a Service for mid-sized business market
April 2008 by Emmanuelle Lamandé
IBM introduced several new services to help mid-sized businesses better manage risk and improve the security of their IT systems. IBM developed these services in response to recent IBM X-Force® research that showed an alarming rise in organized crime attacks on smaller organizations.
According to IBM’s team of X-Force global security experts, because mid-sized companies typically lack the vast information technology (IT) resources needed to prepare for such attacks, they can often be prime targets for network attacks, data breaches and other malicious threats. To help these clients, IBM Internet Security Systems (ISS) and its business partners are stepping up delivery of advanced security solutions designed to help smaller businesses to safeguard against criminal attacks, comply with industry standards and secure information, applications, and IT infrastructures. The new services include:
Express Penetration Testing Services – services that uncover an organization’s vulnerabilities by simulating a real network attack and mimicking the techniques used by malicious attackers.
Express Multi-Function Security Bundle – new services that help provide the most complete do-it-yourself protection against network threats, vulnerabilities, worms, viruses, spy-ware and spam in a single Unified Threat Management (UTM) solution.
Express Managed Multi-Function Security Bundle – for clients who prefer a fully managed multi-function security solution, IBM is delivering a suite of products that provide 24/7 comprehensive protection and monitoring, as well as support a broad array of security services including: firewall, VPN, behavioural & signature antivirus, intrusion prevention security (IPS), anti-spam, and Web filtering.
Express Managed Protection Services for Server – affordable services that help provide 24/7 protection for servers from a broad array of threats as well as monitoring and management services.
These new services help smaller organizations which are increasingly looking to purchase Security as a Service to help them simplify their IT operations so they can get back to focusing on their businesses.
Smaller organizations are also grappling with the requirements of the Payment Card Industry (PCI) standard, a global standard that applies to any company that processes, transmits or stores credit card information. The standard was created by credit card companies to help organizations prevent security breaches. Any company that processes credit card data today could be threatened by cyber-crime attacks, resulting in customer identity theft. According to the February 2008 report by Forrester Research, Inc., The State of SMB IT Security Adoption: 2007, only 32 percent of SMB businesses believe they are fully compliant with the PCI standard.
As part of IBM’s end-to-end solution for PCI, IBM is now helping smaller organizations prepare for, and attempt to achieve compliance by introducing:
IBM Express PCI Assessments - assessment for companies that accept store or process credit card information for compliance with the Payment Card Industry (PCI) Data Security Standard. IBM ISS is recognized as a Qualified Security Assessor, certified to complete PCI Assessments.
In Europe, channel distributor Computerlinks has broadened its existing relationship with IBM to include the IBM ISS portfolio of security services.
IBM Threat Mitigation Express Advantage Services will be available later this month.