Israeli developers helped create the new IBM security program
This post is also available in: 
עברית (Hebrew)
ibm reveals a new integrated security system, helping organizations detect vulnerabilities and threats in real time while reducing security costs. Significant parts of the system’s development were done in the company’s software labs in Israel.
The QRadar Vulnerability Manager system allows security administrators to easily analyze situations and prioritize network management, thus helping improve security. By integrating security risk data from various sources into one system, security teams can present analysis data from various networks, end points, databases and application scans in a way that facilitates efficient management.
More than 70,000 vulnerabilities and security risks are documented today, and there are ten new weaknesses reported daily. The rapidly increasing use of social networks, mobile and cloud applications could increase the number of potential vulnerabilities and expand the volume of threats.
The new system scans the organization’s networks, looks for vulnerabilities and helps protect against their exploitation – either by outside attackers or by elements from within the organization itself.
The IBM security applications R&D in Herzliya, part of the company’s software labs in Israel, developed the analytical tools used by the system to scan for vulnerabilities. The Israeli researchers helped coordinate between the Israeli-developed AppScan security tool and the XForce solution, developed by another department at IBM. XForce is also included in the new system – it documents known security risks and enables their detection in the organization’s network.
There’s a growing need for smart, integrated and automatic strategies for managing vulnerabilities and risk exposure, this according to Erik Zuckerman, IBM’s Herzliya R&D center manager. In addition to the growing volume of risk exposure and the number of vulnerabilities, the attacks themselves are more sophisticated than before. New technologies developed by IBM may help form smarter strategies and automated processes, in order to enhance system security.
The new IBM QRadar Vulnerability Manager system helps making security risk management easier and more efficient. It does this by presenting a risk analysis integrating data from various sources, thus allowing quick prioritization of the risk management process. The new system also includes an integrated security scanner, with the option to schedule scans in advance.
Included in the QRadar system, IBM also presents a new infiltration prevention security platform, the Security Network XGS 5100. The new platform allows detection of attacks on the SSL layer, the security protocol allowing web sites to securely transmit data. The system also includes “virtual patching” of security risks, providing protection even if a patch dealing with the specific vulnerability doesn’t exist yet.
