OPSEC Partners

Sourcefire Intelligent Security Monitoring System

Product Version Certified: 2.5.2 - Appliance based on Linux Red Hat 7.3

Product Description: Sourcefire's Intelligent Security Monitoring (ISM) solutions form the security industry's only unified solution to combine state-of-the-art network surveillance with policy enforcement and threat remediation. Unlike current intrusion detection systems, Sourcefire offers a comprehensive system that gives one visibility, flexibility, scalability, and complete data management.


Key Features and Benefits OPSEC Integration

The Company: Sourcefire, Inc., a world leader in intelligent security monitoring and threat management solutions, has been recognized throughout the industry for enabling customers to quickly and effectively minimize network security risks. The Sourcefire Intelligent Security Monitoring system is the first ever unified security monitoring infrastructure delivering all of the capabilities needed to proactively identify threats and defend against intruders. Founded in 2001 by the creators of Snort™, Sourcefire is a privately held company headquartered in Columbia, MD.

Key Features and Benefits

Sourcefire Intelligent Security Monitoring System (ISM) is the industry's first fully integrated security monitoring infrastructure for identifying and protecting against network threats. Unlike current intrusion detection systems, Sourcefire offers a comprehensive system that gives one visibility, flexibility, scalability, and complete data management. Sourcefire ISM offers the industry's best protection and allows users to customize every aspect of the system to suit their specific environment and security needs.

This system is comprised of:

Sourcefire Network Sensors offer flexible, scalable and precise intrusion detection technologies are the most widely deployed worldwide.
Sourcefire Real-time Network Awareness solution passively monitors a network to deliver highly detailed, real-time profiles of all network assets including their configuration, behavior, potential vulnerabilities and associated changes.
Sourcefire Management Console, a complete enterprise security management solution with an integrated ultra-high performance database, provides an extraordinary platform for managing, analyzing, and acting on the network surveillance information generated by IDS and RNA sensors.

Sourcefire offers its customers a range of benefits including the following:

Easy-to-use, web-based Graphical User Interface (GUI) that can be launched at multiple locations
Simple remote management capability
Comprehensive and easy-to-understand "rules" language
Pre-loaded configuration with more than 1,600 signatures and anomaly checks
Customizable rules that can be written in mere minutes
Long-standing history based on industry-proven Snort™ IDS technology
24/7 customer service and technical support

All products have the backing of Sourcefire's highly regarded Vulnerability Research Team and the support of expert 24x7 customer services.

OPSEC Integration

The integration of Sourcefire Intelligent Security Monitoring System with Check Point's Next Generation with Application Intelligence™ security software provides users with industry-leading security to protect their businesses most critical networks and resources from attacks. Check Point's latest version of its market-leading product suite, Check Point Next Generation™ with Application Intelligence™, provides customers with the industry's only comprehensive, integrated security solution for defeating and preventing both network-level and application-level attacks. Sourcefire's product works with Check Point VPN-1/FireWall-1 in real-time to block malicious traffic attempting to enter a corporate network. This intrusion prevention technique is another step in Sourcefire's roadmap to provide users with a fully integrated security infrastructure, which will include detection, prevention, passive network discovery, and behavioral profiling and vulnerability analysis.