US: Esri and RedSeal Networks are joining forces to create a geospatial framework for cybersecurity. The goal is to fully integrate existing cybersecurity and information technology (IT) data with other organisational functions. This allows defence, the intelligence community, and federal civilian customers to improve IT's contribution to mission assurance and to enable rapid enterprise-wide response to cyber threats.
RedSeal software creates a logical network topology directly from routing device configuration files. These are typically manually generated, making them labour-intensive, error prone, and difficult to keep updated. By automatically generating IT topologies in real time, accuracy and effectiveness are improved. The software can also model the logical relationship between access to vulnerable devices and the paths to and from critical IT infrastructure, applications, and data in order to prioritize remediation.
Esri is geo-enabling RedSeal's network schema by mapping the physical devices and modelling the physical data flows that implement the logical relationship. Since geography is a unifying framework, the ability to align data flow with specific organisational activities clarifies the impact of physical and cyber events on mission-essential operations.
"Federal customers have requested a COP [common operational picture] for years, but until now, it has been unclear exactly how to integrate cyber security," said Kimberly Baker, RedSeal's vice president for the public sector. "Esri's cyber supply line concept, combined with its geospatial information platform, offers a way for the COP to be more than a collection of disparate data."