Enterprise information assets don't merely consist of the messages companies convey to clients, the documents teams produce, or the end-of-month spreadsheets employees shoot office-wide, justifying their very existence.
As a whole the masses of unstructured content behind most firewalls make up the functional backbone of the enterprise, and increasingly their intellectual property as well. And while plenty of attention is paid to how enterprises create, manage, and archive this data, less is paid to ensuring that critical data remains secure.To address this growing problem, FireEye, Inc., providers of network malware control solutions, dip into a different kind of CMS with the FireEye Central Management System (CMS) and the FireEye 4200 2.0 appliance. The latter addresses various types of remotely controlled malware whose popularity grows in increments alongside the increasing web dependence of Enterprise 2.0 companies.
It would be unfair to say no attention is paid to growing malware threats in the internet omniverse -- Microsoft remains ever-present as does Symantec -- but FireEye sees few direct competitors in its field. It totes itself as the one entity to provide an appliance-based solution against targeted malware.
Protecting whole organizations from network-borne threats are typically relegated to flustered IT engineers who move from department to department, saving systems from the occasional Trojan. But today, according to FireEye CEO and founder Ashar Aziz, potential threats are much more complex.
"Malware breaches have now evolved into full-blown crimeware -- stealthy organized, monetized threats that can disable entire organizations. By combining advanced network security with our unprecedented virtualization technology, FireEye's new Network Malware Control solutions create a new industry standard for addressing major gaps in enterprise protection," explains Aziz. "Crimeware threats like phishing, botnets, and zero-day attacks are repudiated with little impact to the IT organization due to the FireEye Central Management System's easy configurability and integration."
FireEye is known for its proprietary virtualization technology, which protects servers and desktops against malware without forsaking management of the solution. Both FireEye CMS and FireEye 4200 2.0 save loose documents (and their owners) from the hazards of network-borne exploits, allowing only compliant machines to tap into the company infrastructure. Virtualization assesses suspect network traffic and evades threats without interrupting activity on the network itself.
FireEye also implements its FireEye Attack Confirmation Technology (FACT) engine, which assesses the activity of suspicious traffic as it acts on virtual victim machines. This way, FireEye can identify actual threats before taking quarantine or block action against otherwise benign correspondences. This means enterprises using FireEye 4200 2.0 can fight attacks typically undetected by traditional signature-operated or heuristic detection security solutions. Additionally, previously unknown malware attacks can be caught without the need for signature updates, IT analysis, or worse, first-hand experience.
While FireEye 4200 2.0 protects against malware, the FireEye CMS component provides a necessary data storehouse in which audit-relevant security events are automatically collected and kept. This protects the company from human errors and unnecessary time investments that turn long-term data retention requirements into a compliance nightmare.
Users can deploy FireEye 4200 2.0 with security devices at the network level to provide instantaneous attack protection without affecting the company's existing infrastructure. Because it is deployed within LANS and alongside key entry points like VPNS concentrators and wireless mobility controllers, the solution can be implemented in minutes on most networks. Windows Server support also adds to the already formidable network infrastructure protection. FireEye 4200 2.0 also includes enforcement integration with Aruba, and out-of-band network access controls that assist with meeting those pesky auditing and compliance requirements.
FireEye CMS starts at US$ 10 000 per unit; FireEye 4200 2.0 hits a whopping US$ 35 000. But can you put a price on protection? Better still, can you put a price on an almost non-existent implementation process and automated data retention? Not these days.
The Menlo Park, California-based company is funded by Sequoia Capital and Norwest Venture Partners. Learn more about FireEye at fireeye.com, or checkout how Symantec's Information Foundation 2007 is starting to target a blend of information compliance and information security.