SANS Technology Institute GDWP Presentation 1

GIAC Enterprises Network Deployment

Phase 1: The Perimeter

Rodney Caudle, Jay Radcliffe, and Jim

Voorhees

SANS Technology Institute GDWP Presentation 2

Objectives

• Protect the Critical Assets• Manage Recurring Costs• Minimize Implementation Time• Ensure Supportability

SANS Technology Institute GDWP Presentation 3

Protect Critical Assets

• Layered Approach to Perimeter Security Architecture– 3 Layers: Routers, Firewalls, IPS

• DMZ Zones (segregation) for additional visibility and protection

• IPS instead of IDS allows for protection instead of detection

SANS Technology Institute GDWP Presentation 4

Manage Recurring Costs

• Purchasing a product that includes maintenance of signatures and updates

• Building an architecture around an all-in-one device

• Selecting a vendor which provides options for long-term support

SANS Technology Institute GDWP Presentation 5

Minimize Implementation Time

• All-in-One Solution consolidates firewall and IPS– Reduces the complexity – Reduces acquisition time

• Purchase and Own Solution– Reduces acquisition time– May need to address long-term

support (MSSP)

SANS Technology Institute GDWP Presentation 6

Ensure Supportability

• IBM ISS offers– MSSP Option Native (not partner)– All-in-One Device– Additional Features– Staff Familiarity

SANS Technology Institute GDWP Presentation 7

Conclusion

• All-in-One Solution from IBM ISS– Exceeds the

requirements– Simplifies

implementation– Reduces recurring

costs– Long-Term Support

Options Available