Photo - Sumit Bansal, Director for ASEAN, Sophos.
Security solutions company Sophos said it is first to bring synchronised security to endpoints and networks with the introduction of the Security Heartbeat capability into the company's XG series of next-generation firewalls and UTMs (unified threat management solutions).
During a media briefing in Kuala Lumpur, Sumit Bansal, director for ASEAN, Sophos, said Security Heartbeat was a new technology that directly linked next-generation firewalls and UTMs with next-generation endpoint security to share threat intelligence. This will allow faster detection of threats, automatic isolation of infected devices, and more immediate and targeted response and resolution.
"We are excited to deliver synchronised security to our customers in Malaysia, through Security Heartbeat that is available today with the new Sophos XG Series of next-generation firewalls and UTMs, and our next-generation endpoint protection," said Bansal."
"For too long, endpoint security and network security were treated separately which was ineffective in combating sophisticated threats that were also highly coordinated," he said.
"That is changing today by allowing endpoint and network security to act as one automated, integrated system to enable organisations of any size to remediate threats without any manual intervention," said Bansal, adding that with Security Heartbeat, organisations of any size can advance their defences against increasingly coordinated and stealthy attacks.
This should bring about a dramatic reduction in the time and resources required to investigate and address security incidents, he said.
Sophos Heartbeat features
Bansal said the Security Heartbeat will pulse continuous, real-time information about suspicious behaviour or malicious activity between endpoints and the network firewall or UTM.
He said that allowing the direct sharing of intelligence, Security Heartbeat can instantly trigger a response to stop or help control a malware outbreak or data breach. The Sophos XG Firewall will data provided by Sophos endpoint protection to isolate and restrict access to and from the affected device, and in parallel, the endpoint protection can remediate the attack.
After the threat has been removed, the endpoint uses the Security Heartbeat to communicate updated health status back to the network, which then re-establishes normal service to the endpoint, Bansal said.
The Security Heartbeat has been fully enabled and included as part of the Sophos XG Firewall and Sophos Cloud-managed endpoint protection, he added.
In addition, new features of Sophos XG Firewall include:
- Network Security Control Centre. An interface that delivers instant network and threat intelligence so users can take action fast.
- Unified Policy Model. Simplified policy management with pre-configured templates for business apps to dramatically streamline configuration.
- User and App Risk Analysis. App Risk Score features help identify high-risk users and applications and highlight potential security hotspots.
- User Threat Quotient. Manage user-centric policies based on an individual's known behaviour as well as the health status of the computer or mobile device they are using.
- Sophos Firewall Manager. Full-featured centralised management of multiple firewalls that's free for Sophos partners and managed service providers.
- Centralised cloud management. Sophos partners and MSPs can manage multiple Sophos XG Firewall installations from the cloud, using the new Sophos Cloud Firewall Manager.
- Security Heartbeat. This unique capability meaningfully links the firewall and endpoint together, enabling them to share intelligence and enhance protection against advanced threats.
- Hardware flexibility. The Sophos XG Firewall operating system will also run on existing Sophos SG appliances and Cyberoam NG appliances.
- Deployment flexibility. Customers can choose to deploy as hardware, software or virtual appliances, and every feature is available on every form factor.
Available models range from a desktop appliance with integrated Wi-Fi to rack-mount appliances for the data centre.
Sign up for CIO Asia eNewsletters.