|By Business Wire||
|February 4, 2014 12:49 PM EST||
RedSeal Networks, the leader in network infrastructure security management, today shared information regarding the highly successful relationship it has developed with customer Pacific Gas and Electric (NYSE: PCG). Since it began playing an integral role in the utility’s comprehensive risk management strategy in 2012, RedSeal Platform has delivered a way for PG&E’s security and network operations teams to effectively understand and visualize all activity across the highly complex network.
PG&E is an investor-owned utility with 5 million business and residential accounts in Northern California. It provides electricity and natural gas to approximately 16 million people, manages natural gas and hydro power plants, and operates a nuclear power plant; its network is the definition of “critical infrastructure.” Like any utility, PG&E had a need to defend its infrastructure from cyber threats because the effects of a cyber-attack on the company could have wide-reaching effects, from a breach of customer information to loss of power.
Headquartered in San Francisco, PG&E has over 1,000 branches across Northern California and its infrastructure is composed of tens of thousands of devices, including 15 load balancers, hundreds of firewalls, more than 1,000 routers and switches, and 50,000 hosts. Its security team protects a complex system that supports 20,000 employees, 5,000 contractors and 5 million business and residential customer accounts. To add to the complexity, the company maintains one network for its business side and a completely separate network to manage operations of the electric grid and power plants, as well as the data generated by millions of smart meters. These networks need to be kept completely separate for security reasons.
The company needed a solution that allowed its security team to visualize both networks on an ongoing basis with limited connectivity between them, monitor for suspicious activity, and quickly understand and isolate risk.
“At PG&E, we are dealing with a very complex network that covers a service territory of over 100,000 square miles,” said James Sample, senior director and CISO, PG&E. “So for us to be able to protect our network and perform computer network defense activities and monitor for vulnerabilities, we needed a better way of understanding our network. In addition, we need to provide that visibility to folks who didn’t design or operate our network, but really need to understand our network topography.”
After a side-by-side evaluation of offerings from several vendors, PG&E selected RedSeal Platform and according to Sample, “RedSeal was our choice hands down for a variety of reasons, including the fact that the technology was far more mature and readily demonstrated that it could do the things we needed the solution to do. Additionally, from day one, the RedSeal Networks team was on the same page with us in terms of strategic thinking about how to integrate this into a larger system.”
RedSeal Platform was selected for its powerful visualization capabilities, flexibility and ease of integration with other tools in use, including the network configuration management and vulnerability management solutions that PG&E already had in place. When a security event happens now, PG&E can understand where on the network it happened, what assets are involved and correlate that with vulnerability data so it knows what additional assets might be at risk.
Critical IT infrastructure in the U.S. and other nations continues to be highly vulnerable to cyber-attacks because the networks are very large and complex, change continuously and are structurally highly porous. In addition, legacy systems such as SCADA systems that were developed decades ago with no security considerations are still in operation. In order to enhance security and protection of such systems, it is necessary to continuously monitor security risk and take remedial actions to minimize the risk on an ongoing basis. To that end, security professionals must understand the state of their network and security architecture, and continuously and automatically check for any changes that impact infrastructure security.
“PG&E is playing a pioneering role in implementing innovative security and risk technologies for Critical Infrastructure Protection of our nation. Under the leadership of James Sample, the utility company is implementing cutting-edge security technologies and we are proud to serve as a critical component of this strategy,” said RedSeal Networks CEO Parveen Jain.
“Our top-down approach to building superior network infrastructure security management technology that addresses the most complex networks such as PG&E’s is a key differentiator as to why our customers achieve significant value when looking to conquer extremely daunting and difficult challenges,” added Jain. “Once you can effectively address the most complex infrastructures, you can clearly demonstrate to others how they can manage their difficult environments. Rarely do you see technologies succeed in achieving the customer’s desired results when it is the other way around.”
Sample said, “RedSeal’s technology has continued to meet our admittedly high expectations, and is playing an integral role as it feeds right into our overall risk management framework to be able to help prioritize and drive future security investment decisions.”
“We encourage RedSeal Networks to continue their forward-thinking ways and to help their customers think through different use cases for their solution,” concluded Sample. “Red Seal Platform’s value to an organization is limitless based on how the end user opts to utilize it.”
About RedSeal Networks
RedSeal Networks is the leading provider of network infrastructure security management solutions that continuously provide network visualization and identify critical attack risk and noncompliance in complex security infrastructure. It provides network, security, and risk management teams with a firm understanding of where security is working, where investment is needed, and where greatest cyber-attack risks lie. This understanding, or "security intelligence", enables organizations to allocate resources where needed most, embed best practice into daily operations, and take prioritized action where needed. The world's largest government and commercial organizations use RedSeal security intelligence to build world-class operations that systematically reduce attack risk over time.
For more information, visit RedSeal at www.redsealnetworks.com.
DevOps is often described as a combination of technology and culture. Without both, DevOps isn't complete. However, applying the culture to outdated technology is a recipe for disaster; as response times grow and connections between teams are delayed by technology, the culture will die. A Nutanix Enterprise Cloud has many benefits that provide the needed base for a true DevOps paradigm.
Mar. 26, 2017 12:30 AM EDT Reads: 1,833
Information technology (IT) advances are transforming the way we innovate in business, thereby disrupting the old guard and their predictable status-quo. It’s creating global market turbulence. Industries are converging, and new opportunities and threats are emerging, like never before. So, how are savvy chief information officers (CIOs) leading this transition? Back in 2015, the IBM Institute for Business Value conducted a market study that included the findings from over 1,800 CIO interviews ...
Mar. 26, 2017 12:30 AM EDT Reads: 5,148
Virtualization over the past years has become a key strategy for IT to acquire multi-tenancy, increase utilization, develop elasticity and improve security. And virtual machines (VMs) are quickly becoming a main vehicle for developing and deploying applications. The introduction of containers seems to be bringing another and perhaps overlapped solution for achieving the same above-mentioned benefits. Are a container and a virtual machine fundamentally the same or different? And how? Is one techn...
Mar. 26, 2017 12:30 AM EDT Reads: 2,870
What sort of WebRTC based applications can we expect to see over the next year and beyond? One way to predict development trends is to see what sorts of applications startups are building. In his session at @ThingsExpo, Arin Sime, founder of WebRTC.ventures, will discuss the current and likely future trends in WebRTC application development based on real requests for custom applications from real customers, as well as other public sources of information,
Mar. 26, 2017 12:15 AM EDT Reads: 709
As businesses adopt functionalities in cloud computing, it’s imperative that IT operations consistently ensure cloud systems work correctly – all of the time, and to their best capabilities. In his session at @BigDataExpo, Bernd Harzog, CEO and founder of OpsDataStore, will present an industry answer to the common question, “Are you running IT operations as efficiently and as cost effectively as you need to?” He will expound on the industry issues he frequently came up against as an analyst, and...
Mar. 26, 2017 12:00 AM EDT Reads: 4,103
Keeping pace with advancements in software delivery processes and tooling is taxing even for the most proficient organizations. Point tools, platforms, open source and the increasing adoption of private and public cloud services requires strong engineering rigor - all in the face of developer demands to use the tools of choice. As Agile has settled in as a mainstream practice, now DevOps has emerged as the next wave to improve software delivery speed and output. To make DevOps work, organization...
Mar. 26, 2017 12:00 AM EDT Reads: 1,689
ChatOps is an emerging topic that has led to the wide availability of integrations between group chat and various other tools/platforms. Currently, HipChat is an extremely powerful collaboration platform due to the various ChatOps integrations that are available. However, DevOps automation can involve orchestration and complex workflows. In his session at @DevOpsSummit at 20th Cloud Expo, Himanshu Chhetri, CTO at Addteq, will cover practical examples and use cases such as self-provisioning infra...
Mar. 25, 2017 11:15 PM EDT Reads: 2,912
The financial services market is one of the most data-driven industries in the world, yet it’s bogged down by legacy CPU technologies that simply can’t keep up with the task of querying and visualizing billions of records. In his session at 20th Cloud Expo, Jared Parker, Director of Financial Services at Kinetica, will discuss how the advent of advanced in-database analytics on the GPU makes it possible to run sophisticated data science workloads on the same database that is housing the rich inf...
Mar. 25, 2017 10:45 PM EDT Reads: 3,615
For organizations that have amassed large sums of software complexity, taking a microservices approach is the first step toward DevOps and continuous improvement / development. Integrating system-level analysis with microservices makes it easier to change and add functionality to applications at any time without the increase of risk. Before you start big transformation projects or a cloud migration, make sure these changes won’t take down your entire organization.
Mar. 25, 2017 09:45 PM EDT Reads: 3,557
Apache Hadoop is emerging as a distributed platform for handling large and fast incoming streams of data. Predictive maintenance, supply chain optimization, and Internet-of-Things analysis are examples where Hadoop provides the scalable storage, processing, and analytics platform to gain meaningful insights from granular data that is typically only valuable from a large-scale, aggregate view. One architecture useful for capturing and analyzing streaming data is the Lambda Architecture, represent...
Mar. 25, 2017 08:45 PM EDT Reads: 5,973
My team embarked on building a data lake for our sales and marketing data to better understand customer journeys. This required building a hybrid data pipeline to connect our cloud CRM with the new Hadoop Data Lake. One challenge is that IT was not in a position to provide support until we proved value and marketing did not have the experience, so we embarked on the journey ourselves within the product marketing team for our line of business within Progress. In his session at @BigDataExpo, Sum...
Mar. 25, 2017 08:45 PM EDT Reads: 2,759
Things are changing so quickly in IoT that it would take a wizard to predict which ecosystem will gain the most traction. In order for IoT to reach its potential, smart devices must be able to work together. Today, there are a slew of interoperability standards being promoted by big names to make this happen: HomeKit, Brillo and Alljoyn. In his session at @ThingsExpo, Adam Justice, vice president and general manager of Grid Connect, will review what happens when smart devices don’t work togethe...
Mar. 25, 2017 06:15 PM EDT Reads: 2,562
SYS-CON Events announced today that Ocean9will exhibit at SYS-CON's 20th International Cloud Expo®, which will take place on June 6-8, 2017, at the Javits Center in New York City, NY. Ocean9 provides cloud services for Backup, Disaster Recovery (DRaaS) and instant Innovation, and redefines enterprise infrastructure with its cloud native subscription offerings for mission critical SAP workloads.
Mar. 25, 2017 05:15 PM EDT Reads: 1,935
In his session at @ThingsExpo, Eric Lachapelle, CEO of the Professional Evaluation and Certification Board (PECB), will provide an overview of various initiatives to certifiy the security of connected devices and future trends in ensuring public trust of IoT. Eric Lachapelle is the Chief Executive Officer of the Professional Evaluation and Certification Board (PECB), an international certification body. His role is to help companies and individuals to achieve professional, accredited and worldw...
Mar. 25, 2017 04:00 PM EDT Reads: 511
Adding public cloud resources to an existing application can be a daunting process. The tools that you currently use to manage the software and hardware outside the cloud aren’t always the best tools to efficiently grow into the cloud. All of the major configuration management tools have cloud orchestration plugins that can be leveraged, but there are also cloud-native tools that can dramatically improve the efficiency of managing your application lifecycle.
Mar. 25, 2017 04:00 PM EDT Reads: 2,831