Press Releases

Praetorian to Offer One Time, Cost Effective Security Assessments

A Low Risk, High Reward Way to Test-Drive Enterprise Level Security Certification

NEW YORK, NY--(Marketwire - July 22, 2010) - Recognizing the need to take incremental steps and garner internal management support towards a full-fledged third party security assessment program, Praetorian Security Group has created a one-time assessment product that mirrors the first quarter of activities in the Praetorian Enterprise Security Assessment at a discounted cost. "Companies struggle with determining how much security is 'enough'; are we making the right investments, hiring enough of the right people, using the right framework, and are we keeping up with our industry peers? Praetorian's Assessment Program provides the avenue to get an unbiased expert opinion to these questions," according to firm CISO and partner Daniel Kennedy. Third party assessment is a vital aspect of the modern information security program. Firms pursue third party assessment to augment their own expertise, get an objective third party opinion that can be shared with stakeholders (auditors, customers, investors), demonstrate that they are "secure enough" through industry benchmarking, and improve the overall security posture. At every turn corporate stakeholders demand security assurance. Customers want to know their privacy is protected, senior management wants the company reputation protected, partners need to know you won't make them vulnerable, management needs security expenditure justification, and auditors want proof of processes and procedures said to be in place. "In terms of approach, you can try to use many frameworks, overlapping where you can, or you can create a single framework that maps to the other relevant frameworks. It is this second approach that Praetorian has pursued," states Daniel Kennedy. Praetorian's comprehensive enterprise certification program includes risk assessments of the desktop environment, wireless, telephony, e-mail and messaging architecture, application security, a physical security inspection, and a 97 point inspection of a firm's security policies and procedures. A little more than half of the companies undertaking the program achieve certification, with an average projected passing time of 18 months. Praetorian partner Marty Piccinich summarizes the assessment analysis as follows: "The benefit to working with a firm like ours is that we're not sending one junior analyst with a scanner to review your security posture. An infrastructure security manager is reviewing your infrastructure; a CISO is reviewing your policies. In essence, the right people are providing the right expertise in the right areas and we're looking at the whole picture, from policy to implementation. It is a comprehensive correct approach to the problem of being 'secure enough.'"

Praetorian Security Group Plans Launch of New Website

Praetorian Security Group, LLC., based in New York City, has announced plans to launch its new website. The completely redesigned website is enhanced to provide visitors with a very clean look and feel, where they can access information on the company's products and services, as well as important news and updates in the world of information security.

Marty J. Piccinich, co-founder, said, "The goal is to provide the visitor with a clear understanding of what Praetorian Security Group offers without being overly busy or cluttered with information. We also aim to provide important information to the visitor regarding the latest in security news and threats without putting too much marketing speak in front of them."

The newly redesigned website is due to launch in early November.

Praetorian Security Group Announces Log-IDS Feature for Managed Intrusion Detection

Praetorian Security Group, LLC., based in New York City, has announced a new feature to be made available to new and existing customers of the Managed Intrusion Detection Service. Log-IDS takes intrusion detection to another level, offering analysis and alerting of events and logs generated throughout the enterprise.

Jeremy Rossi, co-founder, said, "We are very excited to be offering this feature. Our current specification on intrusion detection does very well at monitoring ingress and egress points for malicious activity. Log-IDS will add the benefit of monitoring key log elements within the enterprise. For example, we can detect a large number of Active Directory authentications to certain systems and generate alerts based on this information."

Many consumers focusing on intrusion detection stop at the network layer, looking for suspicious traffic. Log-IDS provides an extension to intrusion detection, inspecting for suspicious log activity as well, offering an expansive view of the infrastructure. For more information on Log-IDS, please visit Praetorian Security Group's website.