ForeScout Joins IBM's Security Intelligence Partner Program

Ann McClure's picture
Monday, November 26, 2012

Cupertino, Calif. — ForeScout Technologies, Inc., a provider of automated security control solutions for Fortune 1000 enterprises and government organizations, today announced that it has been certified by Q1 Labs, an IBM company and global provider of security intelligence solutions, for its Security Intelligence Partner Program (SIPP). This partnership will allow joint customers to greatly improve real-time visibility, security intelligence and automated control while delivering real-time monitoring and enterprise risk assessment of non-compliant managed and unmanaged network devices.

Increasingly, security threats are originating from unmanaged devices such as smartphones and tablets, a problem solved by integrating ForeScout CounterACT Network Access Control (NAC) with the IBM QRadar Security Intelligence Platform. The joint solution provides customers with a real-time view of enterprise-wide threats that can originate from non-compliant devices and rapid remediation of them to reduce overall business risk. CounterACT identifies all network devices in real-time, assesses whether or not it is compliant, and if necessary blocks the device or redirects it to a secure guest access network, and attempts to remediate the issue - all from a single management console.

Through this integration, QRadar captures, retains and analyzes events generated from ForeScout CounterACT, including network access incidents and policy violations for endpoints and mobile devices. As a member of Q1 Labs’ Security Intelligence Program, ForeScout leverages Q1 Labs’ open protocols, including LEEF (Log Event Enhanced Format) to enhance correlation of security and application layer event data. Furthermore, QRadar can be configured to send action response commands to CounterACT to mitigate QRadar-correlated threats and violations. This level of network access control (NAC), log management and security event management integration enables security professionals to further streamline incident response, forensics and compliance processes.

“Any unmanaged, unknown or insecure devices, including personal mobile devices, on a corporate network present serious security risks and potential operational impact to IT,” said Avi Zelovich, director of product management for ForeScout. “Our alliance with IBM Security helps to alleviate this challenge by giving enterprises visibility into every single device on their network, which greatly improves their overall security posture and GRC compliance.”

“By integrating ForeScout CounterACT with IBM’s QRadar, customers can better see and manage access and endpoint compliance policies and controls for all users and devices, whether using managed or unmanaged BYOD personal mobile devices, as well as take directed action on eminent threats and known violations,” said Matt Ward, senior product manager, IBM.

For more information about the Security Intelligence Partner Program, please visit http://q1labs.com/partners/security-intelligence-partner-program.aspx.

Read more »