Thursday, December 18, 2014
In its recently released security predictions for 2015, Indusface emphasized the need for fully managed integrated security solutions that can effectively monitor and detect online vulnerabilities and defend against them anytime, anywhere. The year 2014 witnessed some of the most notorious security breaches with major attacks from Heartbleed, Bash, Poodle and Drupal core SQL injection vulnerabilities. Such incidents cannot be handled by just issuing random software patches. They have to be prevented or fixed immediately through a proactive defense mechanism, asserts the company in its report.
Mr Ashish Tandon, Chairman and CEO, Indusface says, “We cannot see how SMBs and large enterprises will be able to protect their web assets without a solid security-as-a-service vendor protecting their perimeters.When thinking about IT as a whole, and security specifically, ‘as-a-service’ models are going to rule the checkbook. It’s difficult to keep updating your security posture, unless you have experts to take care of them.”
According to industry estimates, about 300,000 website owners have not been able to fix Heartbleed even after eight months of the vulnerability being widely reported and fixed. A large number of these websites are possibly owned by SMBs who tend to act only “if” they get attacked. But such an approach may not work any longer. With incidents of security breaches at an all-time high, there is a greater need for security-as-a-service vendors.
Indusface’s security experts assert that CISOs will have to look beyond their current reactive approach to managing security. Organizations need to have proactive security systems with a step-by-step approach that clearly defines “when we get attacked, this is how we will protect ourselves” be it for DDoS attacks at application layer or mass data breach attempts using one of the vulnerabilities.
Mr Tandon explains, “Using generic security solutions can only help perform periodic checks which are proving insufficient in the present security landscape. We, at Indusface, customize our solutions to provide on-demand scanning which includes proactive vulnerability assessment, malware monitoring and application audit. This helps us provide ‘always-on’ security for all web assets. During the recent cyber attacks, for instance, we ensured that all our customers were patched within 24 hours.”
"Indusface has proved to be a valuable security partner with its Total Application Security solution. Their 'detect-protect-monitor' package handles security worries so we can focus on improving services for our customers. Vulnerability detection, attack blocking and near real-time reports are some of the key differentiators that we enjoy with them. The web application scanning and web protection combination ..."
"As one of the leading banks in India, securing application infrastructure is critical for us. Indusface’s Total Application Security package allows us to scan vulnerabilities continuously and prevent attacks. Indusface also provides the unique benefits of expert handling and tuning on custom rules with round-the-clock traffic monitoring and protection through on-premise appliances ..."
"Our complete ecommerce infrastructure is hosted on the cloud and we are glad to have Indusface as partner for web security. Due to their association with cloud service providers and prompt deployment options, Indusface was the preferred security choice. The on-demand and scheduled scanning helps us keep track of vulnerabilities that may otherwise damage our website or put customers at risk ..."