042
Summary
S
Today’s security challenges require a fresh perspective on protection architecture. Tomorrow’s
threats are not the same as yesterday’s, mandating an architecture that adapts quickly and
keeps pace with the ever-changing requirements of advanced enterprise information systems.
The SDP architecture is a new paradigm – a practical approach to implementing a modular
and dynamic security infrastructure. Software-defined protections provide needed flexibility
and can be adapted to cope with new threats, as well as challenges born from new enterprise
computing and networking platforms.
To identify threats currently active in the enterprise, organizations must implement
mechanisms and processes for generating and distributing actionable intelligence in the form
of threat indicators. Threat intelligence used for threat prevention is obtained using external
and internal sources of threat data. Indicators are used by enforcement points to detect and
block threats in real time.
Finally a modular, open and resilient security management allows enterprises to integrate
security with business processes, using a layered security administration framework to
support delegation and segregation of duties. Automation is used to orchestrate the security
architecture with other enterprise systems.
With this modern architecture, attacks are repelled and external threats that could subvert
internal resources are detected, contained and removed.
