SC Magazine Reader Trust Award 2013 US

SC Magazine gave out their Reader Trust Award(s) 2013 US on February 26 at the Intercontinental Hotel during RSA 2013 San Francisco.   It was quite a formal black tie affair. Finalists were announced in December for the Reader Trust Award.

  

The winners in the Reader Trust Award  2013 categories are as follows: 

• Best Anti-Malware Gateway - Symantec Web Gateway
• Best Fraud Detection   - RSA Adaptive Authentication
• Best Security Information/Event Management (SIEM) Appliance - Splunk Enterprise
• Best Security Solution - Tenable Security Center
• Best Emerging Technology - CipherCloud Gateway
• Best Mobile/Portable Device Security - Marble Security for Marble Access
• Best Database Security Solution – McAfee Database Security Solution
• Best IPsec/SSL VPN - Juniper Networks MAG Series Junos Pulse Gateways
• Best Web Application Firewall - Barracuda Web Application Firewall
• Best Data Leakage Prevention - Symantec Data Loss Prevention
• Best Enterprise Firewall – Check Point Software Technologies Check Point R75.40
• Best Identity Management Application  - CA Technologies CA IdentityMinder
• Best NAC Product –  Trustwave NAC
• Best email Security - Barracuda Networks for Barracuda email Security
• Best Cloud Computing Security - Juniper Networks vGW Virtual Gateway
• Best Multifactor Product – RSA SecurID
• Best Intrusion Detection/Prevention Product - Check Point IPS Software Blade
• Best Vulnerability Management Tool - Qualys for QualysGuard Vulnerability Management
• Best Policy Management Solution - SolarWinds Network Configuration Manager
• Best Regulatory Compliance Solution – Websense Data Security Suite
• Best UTM Security - Symantec Endpoint Protection 12
• Best Computer Forensics Tool - Guidance Software for Encase
• Best SME Security Solution - Kaspersky Endpoint Security for Windows Workstations

Congratulations to all the winners!  Symantec and Barracuda were multiple winners. All winners  get bragging rights for a year and numerous marketing opportunities.  Look for the awards to go up on web sites quickly.  Some, but not all of these companies will probably be participating in the SC Magazine UK competition, as well. 

People can go to the SC Magazine site for the Excellence Awards and the Professional Award recipients and to view which companies were awarded finalist designations.  There is a downloadable pdf describing the winners and listing the finalists.

http://awards.scmagazine.com/winners/2013  

To view a list of the finalists http://kensek.blogspot.com/2012/12/sc-magazine-awards-2013-us.html

 

A Lighter Look at RSA 2013 San Francisco

RSA 2013 San Francisco was well attended.  There were over twenty thousand attendees.  Over 350 vendors participated in the trade show portion AhnLab owned the view from outside Moscone Center with flags promoting  their presence at the event.  Former Secretary of State Condoleezza Rice was the featured keynote speaker, the last day of event.   You know you’ve been in security for awhile when you go to one booth and recognize a few people that you’ve worked with, at different companies.

Advanced Persistent Threats (APTs), seemed to be the acronym du jour for RSA 2013 San Francisco this year.  There were a number of firewall vendors, as well.  Websense had a huge wall touting the results of a Miercom   test with their Web Security Gateway Anywhere appliance, versus a handful of competitors.  In looking at 2.26 million URLs, they identified and blocked over 132 thousand bad URLs.  The least effective result was achieved by FireEye who blocked 171 with their Web MPS 1300 appliance.  The report is available on the Websense web site.  Other companies in the test included Blue Coat, Cisco IronPort, and McAfee.  Germany had a pavilion with a number of companies.  China did as well.  Huawei,  from China, had a large booth in the corner of the exhibition hall.  No 60 Minute people were around.  The usual antivirus and internet security vendors were present; Trend Micro, McAfee, Symantec, Sophos, and ESET were there. NSS was distributing their latest firewall report.  WatchGuard was probably not pleased with the result.

However, enough about security.  What were the tchotchkes like?  Dentists appeared to sponsor many of the giveaways, since candy was rampant.  The usual pens and stress balls were all over the place.  More than a handful of booths were giving away quite nice water bottles.  Three motorcycles, including a Harley Davidson, were being given away.  The event was lighter than usual on tee shirts this year, but they were available at the Check Point, Kaspersky, AhnLab, and Trend Micro booths.  .  AhnLab had a slot machine with the grand prize being $10 thousand.  Light sabers were being given away.  A wookie and Leia (cinnabon hairstyle and all) were hanging in one booth along with the white storm troopers.   

There was a huge line for autographed copies of Kevin Mitnick’s latest book, The Art of Deception.  Likewise for Bruce Schneier and his latest book.  A $35 mini speaker was another giveaway at one booth, a company branded Rubik’s cube at another.  One company gave away a 3 feet long remote control helicopter at the end of each presentation.  Very cool.  Copious amounts of food and alcohol was served Monday evening during the two-hour preview to the show.  One company had a box to put one of your tchotchkes in.  A lucky person was going to win the whole box.  Seinfeld’s “no soup for you” guy was at the show for people wanting to have their picture taken with him.  Kaspersky himself showed up at the Kaspersky booth.  The Kaspersky  booth was serving most excellent kaspertinis at the show on Wednesday.  Bravilna.

RSA 2013 San Francisco - Where the World Talks Security

The RSA 2013 San Francisco security trade show  takes place  at Moscone Center February 25 through March 1.  “Where the World Talks Security” is the theme of this year’s show.  http://www.rsaconference.com/events/2013/usa/index.htm

 

Near the bottom of this blog is information on getting a free RSA  pass (exhibition hall) from Ahnlab, Zscaler, or Sophos.

The show has grown in size, with over 350 companies exhibiting.  The exhibition hall area will be open Tuesday through Thursday from 11am to 6pm (3pm on Thursday) for individuals with a full conference pass; there will be 275 different sessions to attend across 22 tracks.  Threats are evolving.  The cyber criminals are getting more creative. 

Up until several years ago, if you said “APT”, the brightest people in the room would say, “Advanced Placement Test.”  Now they are saying, “Advanced Persistent Threat.”  A number of security pundits are saying that traditional defenses are ineffective against today’s more sophisticated threats.  Here is your chance to learn about what companies are doing to protect individuals and companies against these. 

A number of security vendors may not have booths.  Look for stealthy meetings to be held at the bar area at the W Hotel, and way too many luncheons to at the Thirsty Bear Brewery on Howard street.  Some stealthy meetings may be held as far away as the Clift Hotel. 

For those just going for the exhibits, a great number of vendors always have   presentation theatres in their booth areas.  These can be quite educational, as well.  Exhibition pass holders are able to attend the keynotes Tuesday through Friday, I believe.  There are a number of keynote addresses at RSA 2013.  The final keynote this year will be 66^th Secretary of the United States, Condoleezza Rice, on Friday afternoon.   Go to the RSA site to learn about what talks are being give, and who the other keynote speakers are. 

Thursday is the least crowded day in the Exhibition Hall, as vendors will go through the ceremonial exchanging of the tchotchkes with other vendors.  Before going on your own personal tchotchke run, ask yourself, “Do I really need another 15 trade show tee shirts?”  If you do not attend on Tuesday, you will miss the libations being served during the last hour on the first day the exhibition hall is open.

Sponsors for this Year’s RSA 2013 San Francisco

Global Diamond Sponsors – Microsoft, Symantec, and RSA.  Global Platinum Sponsors, Akamai, and Qualys, Global Gold Sponsors – FireEye, splunk, and SafeNet, Platinum Sponsors – Cisco, McAfee, HP, and TrustWave.  There are also Gold and Silver sponsor levels as well.  Visit their booths. Travel the perimeter to view products from companies who lack the budget of the larger companies, may just be starting out, but may also have great products.    

This is your chance to attend a talk by a smaller vendor, then go to a larger vendor and ask, “Can you do A, B, and C?  This smaller vendor can.”    Asking a larger vendor why their products didn’t test as well on the tests performed by  www.virusbtn.com , www.AV-Test.org   and www.AV-comparatives.org  will not get you to the front of the line for any booth giveaways.  At the show, you may be able to view products that range from not so hot, to avg,  to pretty incredible.

Award Events Not Affiliated with RSA But Being Held That Week

SC Magazine will be presenting their SC Awards 2013 Reader Trust, Excellence, and Professional Awards   at a dinner on February 26. There are  over 34 categories this year.  To see a list of some of the finalists, go to http://kensek.blogspot.com/2012/02/sc-magazine-awards-2012-winners_29.html

 

Info Security Products Guide will be presenting their 2013 Global Industry excellence awards at a dinner on February 27.  To see a list   of the finalists for this award, go to http://www.infosecurityproductsguide.com/excellence/index.html

 

For the recipients of either these awards - Bragging rights, Product and company recognition, Marketing and promotion opportunities, Logos for their web site.  With a fair degree of certainty,  rest assured that those who have won the previous year but not this year, will not quickly be removing their logos from the web.   sites.

Free Pass – RSA 2013 San Francisco

Entering FXE13AHN at the link below will get you a free RSA 2013 exhibition hall pass.  Stop by the Ahnlab booth, learn about APTs, and tell Ahnlab  thank you.  FX13SPH at the link below will get you a free RSA  2013 exhibition hall pass.  Stop by the Sophos booth and tell them thank you.  As will FXE13ZSC.  Stop by the Zscaler booth and tell them thank you. Expires February 22.

Register: https://ae.rsaconference.com/US13/portal/newreg.ww

SC Magazine Awards 2013 - US

SC Magazine US  has announced their finalists for their SC Magazine Awards  2013. The major categories are Readers Trust, Excellence Awards, and Professional Awards.  Print subscribers to SC Magazine get to vote on the Readers Trust awards. A panel of judges are responsible for the Excellence and Professional Awards.  The winners will be announced at the 2013 SC Awards U.S. to be held on Feb. 26, 2013 in San Francisco during RSA 2013.  These awards aren’t part of RSA 2013 San Francisco.  Companies like to win these awards. It gives them recognition and bragging rights. Smaller companies, in particular like the visibility this gives them.  Larger companies will sometimes “argue” that there’s little upside for them to participate, since if they don’t receive an award, or become a finalist,  they lose out, with little upside if they become a finalist or win.  No risk, no reward!

Readers Trust Finalists SC Magazine Awards 2013

Best Anti-Malware Gateway

•     Dell SonicWALL for Dell SonicWALL TZ 215
•     McAfee for McAfee Web Protection
•     Symantec for Symantec Web Gateway
•     Trustwave for SecureWeb Gateway
•     Websense for Websense TRITON Security Gateway Anywhere

Best Enterprise Firewall

•     AT&T for AT&T Network-Based Firewall
•     Check Point Software Technologies for Check Point R75.40
•     Dell SonicWALL for Dell SonicWALL SuperMassive E10800
•     Fortinet for FortiGate-800C
•     Sourcefire for Sourcefire Next-Generation Firewall (NGFW)

Best Mobile/Portable Device Security

•     AirWatch for AirWatch MDM/MCM/MAM
•     AVG for AVG AntiVirus FREE for Android
•     Marble Cloud for Marble Access
•     Sophos for Sophos Mobile Control 2.5
•     Symantec for Symantec Mobile Management Suite

Best Vulnerability Management Tool

•     GFI Software for GFI LanGuard 2012
•     Qualys for QualysGuard Vulnerability Management
•     Rapid7 for Rapid7 Nexpose Enterprise
•     Tenable Network Security for SecurityCenter
•     Trustwave for TrustKeeper Vulnerability Manager

Best Cloud Computing Security

•     IBM for IBM Cloud Security Solutions
•     Juniper Networks for vGW Virtual Gateway
•     Sophos for Sophos SafeGuard 6
•     Symantec for Symantec O3 Cloud Identity and Access Control
•     Trend Micro for Trend Micro Deep Security 9
•     Websense for Websense TRITON Enterprise

Best Fraud Prevention Solution

•     CA Technologies for CA RiskMinder
•     Entrust for Entrust TransactionGuard
•     RSA, the security division of EMC, for RSA Adaptive Authentication
•     Symantec for Symantec Code Signing
•     Trusteer for Trusteer Pinpoint

Best Multifactor Product

•     CA Technologies for CA AuthMinder
•     Entrust for Entrust IdentityGuard
•     PhoneFactor for PhoneFactor
•     RSA, the security division of EMC, for RSA SecurID
•     Symantec for Symantec VIP

Best Web Application Firewall

•     Barracuda Networks for Barracuda Web Application Firewall
•     Dell SonicWALL for Dell SonicWALL SRA Web Application Firewall Service
•     Fortinet for FortiWeb-400C
•     IBM for IBM Security Network IPS/Network Protection
•     Imperva for SecureSphere Web Application Firewall

Best Computer Forensic Tool

•     AccessData Group for Forensic Toolkit (FTK)
•     FireEye for FireEye Malware Analysis System
•     Guidance Software for EnCase
•     RSA, the security division of EMC, for RSA NetWitness
•     Websense for Websense Cyber Security Intelligence On-Demand

Best Identity Management Application

•     CA Technologies for CA IdentityMinder
•     Centrify for Centrify Suite 2012
•     Cyber-Ark Software for Privileged Identity Management Suite
•     IBM Software Group for IBM Security Identity Manager
•     NetIQ for NetIQ Identity Manager 4

Best NAC product

•     Bradford Networks for Network Sentry
•     ForeScout Technologies for ForeScout CounterACT
•     StillSecure for StillSecure Safe Access
•     Trustwave for Trustwave NAC

Best Web Content Management Product 

•     Barracuda Networks for Barracuda Web Security
•     EdgeWave for iPrism Web Security
•     Websense for Websense Web Security Gateway Anywhere

Best Data Leakage Prevention (DLP) 

•     Dell SonicWALL for Dell SonicWALL E-Class Network Security Appliance (NSA) 8510
•     Identity Finder for Identity Finder
•     RSA, the security division of EMC, for RSA DLP
•     Symantec for Symantec Data Loss Prevention
•     Trend Micro for Trend Micro Integrated Data Loss Prevention 
•    Websense for Websense Data Security Suite

Best Intrusion Detection System/Intrusion Prevention System (IDS/IPS) Product

•     Check Point Software Technologies for Check Point IPS Software Blade
•     Dell SonicWALL for Dell SonicWALL SuperMassive E10200
•     HP for HP TippingPoint S7100NX Next Generation Intrusion Prevention System (IPS)
•     IBM for IBM Security Network IPS / Network Protection
•     Sourcefire for Sourcefire Next-Generation IPS (NGIPS)

Best Policy Management Solution

•     IBM for IBM Endpoint Manager
•     NetIQ for NetIQ Secure Configuration Manager
•     SolarWinds for SolarWinds Network Configuration Manager (NCM)
•     Tripwire for Tripwire Enterprise 8.2

Best Database Security Solution

•     DB Networks for Adaptive Database Firewall
•     BeyondTrust for PowerBroker Database - Monitor & Audit
•     IBM for IBM InfoSphere Guardium
•     Imperva for Imperva SecureSphere
•     McAfee for McAfee Database Security Solution

Best IPsec/SSL VPN

•     Barracuda Networks for Barracuda SSL VPN
•     Dell SonicWALL for Dell SonicWALL Aventail E-Class SRA EX9000
•     HOB for HOB RD VPN blue edition
•     Juniper Networks for MAG Series Junos Pulse Gateways
•     NCP Engineering for NCP Secure Enterprise Management 3.0

Best Security Information/Event Management (SIEM) Appliance 

•     HP for ArcSight Express
•     IBM Software Group for QRadar SIEM
•     LogRhythm for LogRhythm
•     NetIQ for NetIQ Sentinel 7
•     SolarWinds for SolarWinds Log & Event Manager (LEM)
•     Splunk for Splunk Enterprise

Best Email Security Solution

•     Barracuda Networks for Barracuda Email Security
•     McAfee for McAfee Email Protection
•     Proofpoint for Proofpoint Enterprise Protection/Proofpoint Enterprise Privacy
•     Symantec for Symantec Messaging Gateway
•     Websense for Websense Email Security Gateway Anywhere

Best Managed Security Service

•     Dell SecureWorks for Dell SecureWorks Managed Security Services
•     IBM for IBM Managed Security Services
•     MANDIANT for MCIRT Managed Defense
•     Verizon Business for Managed Security Services - Commercial
•     Verisign for Verisign MalDetector Service

Best UTM Security

•     Check Point Software Technologies for Check Point 2200 and 4000 Series Appliances
•     Dell SonicWALL for Dell SonicWALL TZ 215
•     Fortinet for FortiGate-100D
•     Sophos for Sophos UTM 9
•     Symantec for Symantec Endpoint Protection

 Excellence Awards SC Magazine Awards 2013

Best Emerging Technology

•     Black Lotus for Human Behavior Analysis
•     CipherCloud for CipherCloud Gateway
•     CloudPassage for CloudPassage Halo
•     Microsoft for Enhanced Mitigation Experience Toolkit (EMET) 3.0
•     Pindrop Security for Fraud Detection System
•     Webroot Software for Webroot SecureAnywhere Business - Endpoint Protection

Best SME Security Solution

•     AirWatch for AirWatch MDM/MCM/MAM
•     Kaspersky Lab Americas for Kaspersky Endpoint Security for Windows Workstations
•     Qualys for QualysGuard Express
•     Sophos for Sophos UTM 9
•     SpectorSoft for SPECTOR 360

Best Enterprise Security Solution

•     CA Technologies for CA Technologies Content-Aware Identity and Access Management Suite
•     FireEye for FireEye Malware Protection System
•     Qualys for QualysGuard Enterprise
•     Sourcefire for Sourcefire Next-Generation IPS (NGIPS)
•     Tenable Network Security for SecurityCenter
•     Varonis Systems for Varonis Data Governance Suite

Best Regulatory Compliance Solution

•     Agiliance for Agiliance RiskVision with Agiliance Compliance Manager Application
•     Qualys for QualysGuard Policy Compliance
•     RSA, the security division of EMC, for RSA Archer eGRC
•     Symantec for Symantec Control Compliance Suite 11
•     Websense for Websense Data Security Suite

Best Customer Service

•     Barracuda Networks for Barracuda Customer Service and Support
•     ESoft for eSoft Customer Support
•     Kaspersky Lab Americas for Kaspersky Business Products
•     Qualys for Qualys
•     Vanguard Integrity Professionals for Vanguard Customer Service

  

Best Security Company 

•     Cyber-Ark Software
•     Dell SonicWALL
•     MANDIANT
•     Sophos
•     Sourcefire
•     Verizon

Rookie Security Company of the Year

•     Appthority
•     Pindrop Security
•     Seculert
•     Vaultive
•     viaForensics

 Professional Awards - SC Magazine Awards 2013

Best Cyber Security Higher Education Program

•     Champlain College for Computer Forensics & Digital Investigation Degree Programs
•     Iowa State University for Cyber Security Education Program
•     Kennesaw State University for Bachelor of Business Administration in Information Security and Assurance (BBA-ISA)
•     University of Maryland University College for Cyber Security Degrees and Certificate Program

Best Professional Certification Program

•     GIAC - Global Information Assurance Certification for GIAC Security Expert (GSE)
•     GIAC - Global Information Assurance Certification for GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)
•     Information System Audit and Control Association for CRISC (Certified in Risk and Information Systems Control)
•     Information System Audit and Control Association for CISM (Certified Information Security Manager)
•     Information System Audit and Control Association for CISA (Certified Information Systems Auditor)

Best Professional Training Program

•     Guidance Software for Guidance Software Training
•     Inspired eLearning for Security Awareness Training
•     (ISC)2 for The (ISC)2 Education Program
•     Secure Ninja for SecureNinja Cyber Security Training Program
•     The SANS Institute for SANS Training

Best Security Team

•     godaddy.com for Go Daddy Security Team
•     Teleperformance Group for Teleperformance Security Team
•     U.S. Department of Homeland Security for ICS-CERT Security Team
•     Verizon Business for Verizon RISK Team

CSO of the Year

•     Bobby Dominguez, director, IT security & GRC, PSCU Financial Services
•     Nikk Gilbert, vice president & chief information security officer, CUNA Mutual Group
•     John South, CSO, Heartland Payment Systems
•     Bruce Wignall, CISO, Teleperformance Group

What Readers Trust Awards Mean for the Recipients 

•  Third party validation by a leading dedicated security company
•  Third party validation by peers
• Marketing/promotional rights for a year, subject to licensing
• A number of potential marketing/branding/lead generation opportunities for the recipients

For details on the judging process for SC Magazine Awards 2013, go to

 http://awards.scmagazine.com/about

  

To See Who Won in 2012, Go To

http://kensek.blogspot.com/2012/02/sc-magazine-awards-2012-winners_29.html