FFIEC News

Gladiator Technology Delivers Server Intrusion Prevention Services

(Feb 28, 2007)--Gladiator Technology Services announced Server Intrusion Prevention Services (SIPS) designed to protect confidential account information stored on internal servers. The SIPS solution, offered as part of Gladiator’s comprehensive CoreDEFENSE security services suite, provides real-time monitoring and prevents and detects malicious activity on internal servers, as directed by FFIEC guidelines.

According to Danny Johnston, company president and CEO, “Today’s security threats are growing more complex and stealthy. Combine that threat with ever-increasing scrutiny from federal examiners on information security compliance and you have a difficult challenge regarding network security. SIPS is an additional layer in Gladiator’s arsenal of services that proactively help protect financial institutions from security breaches. We are protecting not only our customers’ systems, but also their reputations.”

Financial institutions nation-wide are adopting comprehensive “defense-in-depth” models to protect data assets. SIPS is one way Gladiator uses a multiple-layered security approach to protect their customer’s network. DJ Goldsworthy, manager of Gladiator’s Security Operations Center in Atlanta, says, “When developing a flexible defense-in-depth plan capable of handling diverse threats, endpoint security is paramount. Simply put, financial institutions need SIPS to make sure servers storing account data aren’t at risk.”

According to a recent Gartner study, 70% of all attacks originate from inside a network. Matt Riley, Gladiator’s vice-president of security and CTO, comments, “Often this type of ‘friendly fire’ is comprised of inadvertent actions by employees. But whether friendly or not, we monitor events 24x7x365 for any unauthorized and potentially malicious intrusions occurring directly on servers inside the network where critical data resides.”

Goldsworthy adds, “An institution may wonder what happens if someone launches an attack or releases a new worm that exploits a vulnerability for which there isn’t a vendor patch. The answer is that servers are still protected because our SIPS solution, through an innovative approach to protocol and system behavioral analysis, can thwart previously undefined zero-day attacks. We also perform monthly, automated scans of each monitored server for any potential security vulnerabilities to determine if critical patches or network hardening is needed to protect a system further.“

Share or bookmarklet this web page at: