IBM Agrees to Acquire ISS
IBM has agree to acquire Internet Security Systems (ISS), a publicly held company based in Atlanta, Georgia, US, in an all-cash transaction at a price of approximately $1.3 billion, or $28 per share. The transaction is expected to close in the fourth quarter of 2006.
This acquisition advances IBM’s strategy to utilize IT services, software and consulting expertise to automate labor-based processes into standardized, software-based services that help clients optimize and transform their businesses. This acquisition also reinforces IBM’s position in the rapidly growing area of Managed Security Services.
With concerns ranging from data theft to implementing and managing increasingly complex regulatory requirements, addressing IT security has become one of the most complex challenges companies are facing, regardless of size, location or industry. ISS augments IBM’s ability to address this growing industry challenge by combining ISS’ complementary automated security platform, services, software and expert consultants with IBM’s broad security portfolio, innovative research and global reach.
“Clients increasingly recognize that security must become a network-integrated business process rather than a reactive response to individual threats,” said Tom Noonan, president and CEO of ISS. “By delivering an integrated security platform that is adaptable and extensible to address new threats and business requirements without incremental complexity and cost, ISS has delivered the foundation for delivering security as a service. These on-demand capabilities, together with our managed security services, appliances and software will further bolster IBM’s leading security services and products as we take this innovation out to a larger, global stage.”
IBM will utilize ISS’ X-Force security intelligence service, which proactively protects networks with detailed analyses of global online vulnerabilities and threat conditions. The ISS global network of security operations centers (SOCs), which include sites in Tokyo, Brussels, Brisbane, Detroit and Atlanta, will also be added to IBM’s existing global network of SOCs. IBM security consultants and global sales force will also offer ISS’ line of security appliances and software, and fully enable it for IBM and third party products, services and solutions.
Following completion of the acquisition, IBM intends to:
• Establish ISS’ operations as a business unit within IBM’s Infrastructure Management Services unit, part of IBM Global Technology Services;
• Integrate ISS’ software technology with Tivoli’s IT service management portfolio, which includes software for Identity Management, Access Management, Service Oriented Architecture (SOA) security and Security Information Management;
• Market and sell ISS’ Managed Security Services and portfolio of Network, Application, Server and Endpoint Protection products through IBM’s and ISS’ worldwide sales channels and business partners;
• Further expand the scope and capabilities of IBM’s business and IT asset management consulting practices, and deliver services for ISS-based solutions through IBM Global Services.
6th Hack in the Box Security Conference
The 6th Hack in the Box Conference (HITBSecConf2006) will be held in Kuala Lumpur at The Westin Hotel from Sept. 18-21, 2006. This home-grown nonprofit hacking and network security conference will feature over 30 of the world’s leading network security specialists who will be on hand to conduct seven tracks of technical training sessions. Topics for the training sessions include advance web application and services hacking; attacking and defending networks; the exploit laboratory; tactical VoIP: Applied VoIPhreaking; structured network threat analysis and forensics; and the Yin and Yang of Java security programming.
In addition, there will also be a live hacking competition known popularly as “Capture The Flag.” The competition, first developed and presented at Defcon in Las Vegas, is an attack and defense game which sees teams of individuals tasked with defending and attacking into prepared servers in order to retrieve marked files or flags on these target machines.
The conference keynotes for this year will feature Bruce Schneier, founder and CTO of Counterpane Internet Security; Mark Curphey, VP of Consulting at Foundstone; and John Viega, Chief Security Architect at McAfee.
“The main aim of the HITB series of conferences is to allow the dissemination of deep-knowledge network security information and at the same time give the attendees a chance to meet with the world’s leading experts in this field. The presentations at the event are delivered by respected members of both the mainstream network security arena as well as the underground or black hat community. As always attendees can be assured of being among the first to learn of new attack and defense methods that have not been discussed in public before,” said Dhillon Andrew Kannabhiran, founder and CEO of Hack in the Box Sdn. Bhd.
For more details and updates on HITBSecConf2006, point your browser to http://conference.hitb.org/hitbsecconf2006kl/.
(ISC)2 Downloads Continue
The International Information Systems Security Certification Consortium’s [(ISC)2] “2006 Resource Guide for Today’s Information Security Professional, Global Edition” is a hot download at the (ISC)2 website. In June alone, (ISC)2 recorded close to 20,000 downloads from its site. The total number downloaded by January 2007 is anticipated to be close to 200,000.
The 122-page guide is a free compilation of security-focused resources in 50 countries located in North, Central and South America and Asia, Europe, the Middle East and Africa. These include educational institutions and organizations, professional associations, conferences, trade shows, websites and online and print publications.
Currently in its third year of publication, the “2006 Resource Guide for Today’s Information Security Professional,” is the information security industry’s only comprehensive almanac, providing professionals with one-stop access to educational and peer networking opportunities and other resources that can enhance their careers. To download the guide, visit www.isc2.org/resourceguide.
(ISC)2 officials noted that the organization has commenced the process of updating the Resource Guide for next year, which is expected to be available in early February 2007.
