Photo - Paul Muller, IT Management Evangelist, Software, Hewlett-Packard [HP].
HP's recent formation of its HP Security Research (HPSR) organisation is part of a 'big data' driven strategy to bring enterprise level security to organisations of all sizes including SMEs in Malaysia, said the technology solutions giant.
During a media interview in Malaysia, HP Software IT management evangelist Paul Muller said small and medium enterprises (SMEs) faced the same increasingly complex landscape of targetted malware attacks as large enterprises. "Findings from HP's annual Cyber Security Risk Report show that vulnerabilities are up almost 20 percent while mobile vulnerabilities rose 68 percent from 158 in 2011 to 266 in 2012 and 48 percent of mobile applications tested in 2012 gave unauthorised access."
"HP's security offerings are a significant part of our business," said Muller. "We released 35 new enterprise security products in the last 12 months and are number one or number two in most market, including providing managed security to more than 900 enterprise customers."
As well as forming the HPSR organisation, which will provide security intelligence through reports and briefings, HP has married the search and knowledge management functions of HP Autonomy with HP ArcSight SIEM (security-event and information management).
"This will allow new ways to proactively protect information from attacks and internal threats to an organisation," he said. "The proactive protection of information is one prong of HP's three-pronged security strategy. The other two is to harden the attack surface and improving risk management."
"However, a sophisticated enemy requires a sophisticated approach," Muller said. "It's dangerous to over simplify and offer one solution to solve complex problems. To address the three prongs, we use multiple technologies to complement Autonomy and ArcSight SIEM. These solutions include Attala, Vertica, and BSM as well as working with partners to compliance, firewalls, database security, network forensics and so forth."
"Small organisations need to protect their valuable information as much as large government departments," he said, adding that HP's converged security allowed the provision of different levels of security needs depending on the organisation's maturity level from "quick, affordable scalable security right up to risk transformation."
Big data equals big threats
"Big data equals big threats," said Muller. "Security through obscurity does not work: As well as providing regular reports, HPSR provides biweekly briefings via YouTube. With the continuing rapid growth of data, especially driven by social media, mobile working and BYOD [bring your own device], organisations need more real time awareness of vulnerabilities including employee rogue behaviour."
"Big data is the 'cloud of 2013'. The bad guys now just have one place to go to. We need to understand the patterns of activity," he said. For example, HP's big data security strategy would use Autonomy, which can monitor any website, including social media sites, and link this with ArcSight to detect sensitive information
"Traditional techniques of throwing people at the problem of uncovering possible breaches are outdated," said Muller. "A contextual understanding of activities including any attachments is key when it comes to uncovering breaches. We need to be able to do this across all languages without breaching privacy. There are 170 patents behind Autonomy IDOL to help use analytics to provide real time security."
In response to a question how Asian small organisations could meet the current threat landscape, he said: "How to provide enterprise level security environments to local SMEs, which are attacked by the same criminal networks as large enterprises, remains everybody's problem."
Sign up for Computerworld eNewsletters.