Ron Woerner, director of CyberSecurity Studies at Bellevue University: 'There are certain things all network, IT, and security professionals should have in their toolbag. The most important is knowledge; i.e., where to learn more about a particular topic, technique, or tool. It’s impossible to know everything; so focus on where to get quality instruction and information.' Woerner recommends two websites: and blogs.msdn.com/ for reference; and two toolkits: SysInternals and Windows GodMode. The former is a grouping of simple Windows tools and the latter is administration applications already available in the Control Panel. Jeff Northrop, CTO at International Association of Privacy Professionals, uses the term data security intelligence to describe tools that help IT understand their data landscape. 'Currently, we have business intelligence tools, data integration tools, data discovery tools, data encryption tools, compliance tools, and SIEM tools.

The top 20 free Network Monitoring and Analysis Tools for. Network monitoring tool that helps you. Performance of your websites or security testing. 10 Free Network Analysis Tools. One of the best free network security tools in the land, Nmap is made all the easier to use through the GUI provided by Zenmap.

All require an understanding of what data is collected; where it's located; how it's structured, categorized, and used. Most vendors operate in one or two of these areas; but a few companies have recognized a need for better information on the data they're responsible for protecting; extending their products to meet this need.' Northrop lists Informatica’s Secure@Source; IBM’s Q-Radar, HP’s ArcSight, and Splunk. 'I recommend Privileged Identity Management (PIM) tools that control the administrative password and, in some cases, shared business passwords and credentials,' says Andras Cser, vice president and principal security/risk analyst at Forrester. 'These tools are absolutely critical to prevent data breaches by making always-on system administrator access to on-premises and cloud workloads a thing of the past. PIM tools check out and change passwords for critical workloads, which makes attackers' snooped administrator and root passwords worthless. Also, PIM (generally) enforces close monitoring and recording of all programmatic and/or human administrative access to machines.'

'There are three tools that all companies should have,' says Gary Hayslip, deputy director and CISO for the City of San Diego, 'patch management, data backup, and full disk encryption. These tools provide the basic cyber-hygiene foundation, which enables companies to continue to grow safely and respond to incidents. Then, as the revenue stream increases, they can add more security controls to the organization. If I had to choose just one, I'd say patch management. Textures Library on this page. Having a patch management solution in place reduces risk exposure to the organization by keeping its IT assets up-to-date, which makes it harder for the bad guys. However, there's no guarantee that any, one solution will resolve all issues.'

David Giambruno, senior vice president and CIO at Tribune Media, suggests that enterprises should move toward the concept of a software defined data center. 'We're using VMware’s solution stack for its micro-segmentation capabilities—summarized as security at the element layer,' he says. 'Historically, this was incredibly challenging with hardware but, in the software world—where everything is a file—you can wrap everything with a security posture. Security follows wherever the element goes either internal or external.

Intel 865g Chipset Graphics Driver Windows 7 there. The audit-ability, operational automation, and visibility changes defensive capabilities.' Giambruno deployed Cyphort for its capabilities to see east/west traffic in the cloud. 'One interesting new area is using technology to provide a layer between the user and SaaS solutions, so the enterprise can manage authentication and encryption and hold its keys, while maintaining close-to-full functionality with the software as a service (SaaS) solution,' says Dr.

Johnson, global security strategist and security architect for John Deere. 'There are also new solutions for cloud file storage and sync (like Box) that add encryption, data loss protection, and granular reports.' For BYOD, he recommends products that keep corporate data in a container and prevent it from moving, such as Bluebox, which puts a flexible walled garden around certain data and apps, and applies corporate rules. Neil MacDonald, vice president and distinguished analyst at Gartner, advises clients to first remove administrative rights from Windows users, then invest in an endpoint detection and response (EDR) solution that continuously monitors and analyzes the state of the endpoint for indications of compromise.