QRadar Risk Manager provides organizations with a pre-exploit solution that allows network security professionals to assess what risks exist during and after an attack, while also answering many "What if?" questions ahead of time, which can greatly improve operational efficiency and reduce network security risks.
Powerful security analytics, simulation and visualization tools can give network security professionals the ability to move away from day-to-day security firefighting and adopt a proactive, risk based methodology that dramatically improves network security while minimizing the risk of exploits. With QRadar Risk Manager, network security teams have the tools they need to:
Log Management and SIEM are necessary for a good network defense. QRadar Risk Manager adds a new dimension to network security by allowing network security professionals to go on the offensive against cyber criminals by leveraging and extending the value of a SIEM deployment through better risk assessment in mission critical areas including:
QRadar's Risk Manager features an automated knowledge engine that simplifies the assessment of a wide spectrum of network security policies and compliance requirements.
With QRadar Risk Manager, organizations can begin to introduce consistency across network and security configuration through automated configuration collection, analysis, and alerting. QRadar Risk Manager provides automated configuration audit across an organization's multi-vendor switches, routers, firewalls and IDS/IPS. Key configuration audit capabilities include:
QRadar Risk Manager's Advanced Modeling and Simulation feature leverages the broad array of risk indicators which helps network security professionals prioritize their most significant areas of risk. Key modeling and simulation features include
QRadar Risk Manager offers two network visualization tools that provide unique, risk-focused, graphical representations of the network's configurations. Both visualization tools offer network and security professionals a revolutionary investigative capacity by providing before, during and after vulnerability information. Key visualization features include:
QRadar Risk Manager was designed to help organizations of any type or size efficiently enhance their security profiles and fulfill their compliance and reporting requirements including:
Network security professionals need the right tools to better assess which systems are most vulnerable to attack so that they can prioritize vulnerabilities and act. By delivering advanced analytics that integrate network topology and VA scan results, QRadar Risk Manager can assess not only what vulnerabilities a system has, but also which vulnerabilities can be compromised because of how the network is configured.
Centralized policy monitoring leverages the integration of vulnerability scan data with other risk indicators and delivers improved policy verification that is easy to visualize and act upon. QRadar Risk Manager automates policy monitoring and verification with intuitive tools that get the job done.
QRadar Risk Manager is the first solution to successfully integrate risk management, configuration, SIEM, log management, VA scan results, and network behavior analysis to automate risk management functions in mission critical areas, including network and security configuration, policy, and compliance management - giving you the most complete, single console network security solution to determine what the level of risk across your network.
The QRadar Risk Manager appliance delivers a fully integrated risk management, vulnerability prioritization and automated configuration solution that is completely integrated into the QRadar platform. Risk Manager enables tightly integrated features within QRadar SIEM which enhance incident management, log and network activity searching, threat visualization and reporting.
With more data under surveillance and advanced analytic techniques than any security intelligence solution on the market, QRadar detects threats that others miss; providing unparalleled visibility into network and application activity that others cannot.
Uniquely correlating information from security logs, network flow analysis, the application layer, IAM solutions, user activity and asset-based vulnerability management and assessment in one, comprehensive solution.
Simple to deploy and manage, QRadar automates security and network device discovery as well as policy functions. QRadar's appliance-based architecture and embedded database removes the crushing complexity and costs that cripple the deployment and ongoing support of traditional SIEM and log management solutions.
451 Market Insight Service: April 2010 Impact Report
White PaperFIVE Practical Steps To Protecting Your Organization Against Breach>>
Leveraging Log Management to Boost Enterprise IT Security
Security Management: How to Become Predictive vs. Reactive
Why security intelligence from IBM?IBM Security solutions