Story image

Forcepoint appoints new CISO to 'protect the human point'

09 Nov 17

Forcepoint has a new chief information security officer tasked with leading the internal user and data protection program for its 2700 employees across the globe.

Allan Alford will also lead Forcepoint’s security and governance program, lead compliance and certification for the company’s security offerings and partners. He will report to Forcepoint chief information officer Meerah Rajavel and based in the company’s Texas headquarters.

“The security industry is at an inflection point, where customers and vendors must partner to build solutions that can bring visibility to risky behaviour or abnormal data usage as the means to stop headline-grabbing data breaches,” Rajavel comments.

“Allan understands that a new paradigm must be applied to people, process and technology to adequately address these emerging security threats,” Rajavel explains.

Alford previously held IT positions at Pearson and Polycom. He notes that the company’s mission to ‘protect the human point' (where users, critical networks and networks intersect) is full of potential and risk for businesses.

“By combining human-centric security with a modern view on IT, HR and compliance programs, companies like Forcepoint can help employees and partners understand the critical role they play in defending against cyberattacks and protecting sensitive information assets. Instead of operating in silos of business units, IT and corporate functions, we have to look at cybersecurity through the lens of everyone to the defence,” Alford says.

The company’s Next Generation Firewall (NGFW) was recently named the ‘highest-rated security effectiveness’ according to the 2017 NSS Labs Next Generation Intrusion Prevention System (NGIPS) testing.

The testing compared nine different products in the NGIPS category from organisations including Forcepoint, Check Point, Cisco, Fortinet, IBM, McAfee, Palo Alto Networks and Trend Micro.

“The 2017 NGIPS Group Test results provide valuable insights that help enterprises understand the strengths and weaknesses in their security posture,” comments Jason Brvenik, NSS Labs CTO.

Forcepoint’s NGFW scored 99.9% security effectiveness for the second year in a row.

“In the absence of evasions, all of the products did relatively well in catching exploits. However, once evasions were turned on, the effectiveness of all but four products dropped significantly,” the report says.

Brvenik says enterprises can use the information to plan and adjust their security investments.

“In this year’s test, only four of the nine products tested properly detected and blocked attacks when evasion techniques were applied, which underscores the need for continuous validation of security controls.”

NSS Labs makes its testing methodology publicly available on its website.

How to stay safe when shopping online
Online shopping is a great way to avoid the crowds – but there are risks.
Dell EMC embeds security in latest servers
Dell EMC's 14th generation of PowerEdge servers has comprehensive management tools to provide security across hardware and firmware.
Why data backups should be a part of daily operations
"Disaster recovery needs to address complete system failure and provide a set of security policies to govern disaster incidents."
Businesses focusing on threats from within - survey
Over 50% of respondents reported that 100 days of dwell time or more was representative of their organisation.
Corelight and Exabeam partner to improve network monitoring
The combination of lateral movement and siloed usage of point security products leaves many security teams vulnerable to compromise.
SailPoint releases first identity annual report
SailPoint’s research found that many organisations are lacking maturity in their governance processes over identities.
Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.