READER TRUST AWARDS

Best Advanced Persistent Threat (APT) Protection
An advanced persistent threat (APT) product and/or service provides real-time detection of and protection against intruders gaining access to an enterprise environment to stealthily extract high-value information assets from targeted organizations in manufacturing, financial, national defense and other industries.

  • Check Point Software Technologies for Check Point Threat Prevention 
  • Cisco for Cisco Advanced Malware Protection 
  • FireEye for FireEye Threat Prevention Platform 
  • Palo Alto Networks for PA-7050 Next-Generation Firewall
  • Trend Micro for Trend Micro Deep Discovery 

Best Cloud Computing Security Solution
These technologies are deployed to protect data and/or applications in a cloud environment. They may also protect the cloud computing infrastructure itself. Cloud computing security concerns are numerous for both providers and their customers, and include security and privacy worries, compliance issues and legal/contractual problems. Solutions or services in this category can provide for the protection of data or applications in the cloud, protection for traffic flowing between companies and their cloud service providers, policy management and encryption capabilities, privileged user access and controls or more.

  • AirWatch by VMware for AirWatch Enterprise Mobility Management 
  • Blue Coat Systems for Blue Coat Cloud Security Solution 
  • Dell Software for Dell One Identity Cloud Access Manager 
  • Juniper Networks for Firefly Perimeter 
  • Trend Micro for Trend Micro Deep Security 

Best Computer Forensic Solution
Products in this category fall into two sub-categories: network and media. The network tools must be exclusively intended for forensic analysis of network events/data. If the product is a SIEM with forensic capabilities, it should be placed in the SIEM category. Media tools cover just about all other non-network forensic tools, including those tools that collect data from media over the network and live forensic tools. This also includes specialized forensic tools that are not intended to analyze network data.

  • AccessData Group for Forensic Toolkit (FTK)
  • FireEye for FireEye Network Forensics Platform
  • Guidance Software for EnCase Forensic
  • LogRhythm for LogRhythm’s Network Monitor
  • Rapid7 for UserInsight

Best Data Leakage Prevention (DLP) Solution
Products in this category include those that help organizations safeguard their intellectual property and customers’ critical data persistently – inside and outside the company. Network-based and endpoint data leakage prevention products will be considered. Products should prevent data from unauthorized exit from the network, or protect data on the endpoint – whether the endpoint is connected to a network or not. Products typically are policy-driven and should include scanning of all data, regardless of protocol or application leaving the network, and/or keep track of peripherals, such as removable storage and attached to the endpoint – reporting that inventory to a central location or administrator. All entrants should have the capability of being managed by a centralized administrator. Those products considered part of this category include: network DLP products, which are typically gateways; those products protecting only endpoints; and hybrid products that operate at both the gateway to the network and at the endpoint. Specifically for endpoint DLP, traffic should be monitored and encryption should be available.

  • AirWatch by VMware for AirWatch Secure Content Locker
  • Check Point Software Technologies for Check Point DLP Software Blade
  • General Dynamics Fidelis Cybersecurity Solutions for Fidelis XPS
  • McAfee for Data Loss Prevention (DLP)
  • Varonis Systems for Varonis IDU Classification Framework
  • Websense Triton AP-Data + AP-Endpoint

Best Database Security Solution
Protecting critical information is the number one priority for many organizations. An integral component of this is to secure corporate databases. Entries here should include solutions that help customers safeguard mission-critical database environments. Features of these offerings can run the gamut – from encryption to access management to logging and monitoring. Be sure to explain the specific ways the solution protects these corporate crown jewels and the features present to ensure exposures are mitigated.

  • DB Networks for DB Networks DBN-6300
  • GreenSQL for GreenSQL Database Security and Compliance
  • HP for HP Enterprise Secure Key Manager with HP Secure Encryption
  • Trustwave for Trustwave DbProtect
  • Vormetric for Vormetric Data Security Platform

Best Email Security Solution
Email security addresses the ability to exchange email messages with assurance, as well as the ability to filter email messages based on content, source or other criteria. Solutions should ensure the privacy of sensitive messages, limit the repercussions of email forgery and manage other aspects of safeguarding email within the organization. These products are enterprise-centric and should have, but are not required to have, some form of centralized management. They may include spam filters, junk mail filters, malware filters, unauthorized content (sometimes called “extrusion protection” or “data leakage protection”), phishing and other types of undesirable content. However, these are not simply anti-spam filters. These email security products should be evaluated on their effectiveness, manageability, non-intrusiveness, ease of use and other factors that impact the implementation of this type of product in the enterprise environment. They typically provide features such as email encryption, digital signatures, automatic shredding of messages and attachments, and more.

  • Barracuda for Barracuda Email Security Service
  • Cisco for Cisco Email Security Appliance
  • McAfee for McAfee Email Protection
  • Proofpoint for Proofpoint Enterprise Protection/Privacy
  • Websense Triton AP-Email

Best Fraud Prevention Solution
Given the reliance on the internet by consumers from all walks of life to conduct any number of retail, banking or other transactions, fraud prevention solutions have become critical. Tools nominated in this category strive to minimize online privacy and security problems that could lead to fraud and, therefore, impact both the company and the customer. Still an evolving area of information security, there are a slew of solutions and services available that could qualify for consideration in this category – from authentication and enhanced encryption solutions to secure web communication or malware-detection offerings.

  • Entrust for Entrust TransactionGuard
  • F5 Networks for F5 WebSafe/MobileSafe
  • Kaspersky Lab for Kaspersky Fraud Prevention
  • RSA, the security division of EMC for RSA Web Threat Detection
  • Splunk for Splunk Enterprise

Best Identity Management Solution
Products in this category address the identity management lifecycle in an enterprise environment, including password management, user provisioning and enterprise-access management.

  • CA Technologies for CA Identity Manager
  • Centrify for Centrify Server Suite
  • Dell Software for Dell One Identity Manager
  • NetIQ for Identity Manager 4.5
  • RSA, the security division of EMC for RSA Identity Management and Governance (formerly known as RSA Aveksa)

Best Managed Security Service
These offerings provide a turnkey approach to an organization’s primary technical security needs. These offerings can either be a co-located device at the client organization facility, or can be a completely outsourced solution where the application to be protected would reside at the vendor’s data center.

  • Cisco for Managed Threat Defense
  • Dell SecureWorks for Managed Security Services
  • EventTracker SIEM Simplified
  • Trustwave for Trustwave Managed Security Services
  • Webroot for Webroot SecureAnywhere Global Site Manager

Best Mobile Security Solution
More and more employees are using smaller and smaller devices with loads of applications to access corporate data. Some examples include iPhones, iPads, Android devices, BlackBerries and more. Products in this category deal with not only a collapsing perimeter, but also consumer-owned and consumer-controlled devices being used to get at corporate resources. At a minimum, these devices likely will require strong endpoint security, point-to-point encryption and more. This is a broad category. If your product is used to secure this type of small device/handheld, it may fit. Security can be for data at rest in the device itself, secure access to data in the enterprise, and encryption for data in motion between the enterprise and the device. This category also includes anything from hard disk encryption solutions and tools that track lost mobile devices to USB/thumb drive security solutions.

  • AirWatch by VMware for AirWatch Enterprise Mobility Management
  • Check Point Software Technologies for Check Point Capsule
  • Dell for Dell Secure Mobile Access (SMA)
  • MobileIron for MobileIron
  • Sophos for Sophos Mobile Control

Best Multifactor Solution
Products here provide enhanced security to end-users or devices by offering credentials for access to an authenticator or authentication server. Software and hardware that specializes in the biometric authentication of users is also included here. These solutions may use a tangible device (something you have) for authentication, and knowledge (something you know) for authentication. For biometrics, the solution provides identification and authentication using any of the following methods: finger/thumb print, retinal scan, voice recognition, hand/palm geometry or facial recognition.

  • CA Technologies for CA Advanced Authentication
  • Duo Security for Duo Security Cloud Based Two Factor Authentication
  • Entrust for Entrust IdentityGuard
  • RSA, the security division of EMC for RSA SecurID
  • SecureAuth for SecureAuth IdP

Best NAC Solution
Protecting host-based computing platforms and network resources from threats brought in by employees, vendors, contractors and guests involves a numbers of solutions and policies. From anti-virus and firewalls to IDS/IPS solutions, the products in this category run the gamut. However, to control access to network resources at the endpoint, the tools companies often rely on are network access control (NAC) products. These solutions can be used to validate the existence of certain security measures and validate that they are properly configured and up to date. They also can validate the existence of current OS patches and can be used to manage the complexity associated with overseeing permissions and authorizations for various groups of users. Most will integrate with a common directory structure, some will provide local authentication capabilities, while others will match something on the endpoint – such as an agent or MAC address – to the authentication before allowing access to the protected network resources.

  • Cisco for Cisco Identity Services Engine
  • Cryptzone for AppGate
  • ForeScout for CounterACT
  • Hexis Cyber Solutions for NetBeat NAC
  • Trustwave for Trustwave NAC

Best Risk/Policy Management Solution
These products measure, analyze and report risk, as well as enforce and update configuration policies within the enterprise, including but not limited to network encryption, software and hardware devices. Contenders’ products should offer a reporting format that covers the frameworks of multiple regulatory requirements, such as Sarbanes-Oxley, Gramm-Leach-Bliley and other acts and industry regulations. As well, this feature should be network-centric, providing reporting to a central administrator and allowing for companies to centrally manage the product.

So, overall, entrants’ products should be enterprise-centric; collect data across the network, including threats and vulnerabilities; report associated risk, endpoint configuration, enforcement, auditing and reporting; provide remediation options (but are not exclusively patch management systems); and, finally, offer centralized reports based on regulatory requirements and local policies.

  • Qualys for Qualys Policy Compliance (PC)
  • RSA, the security division of EMC for RSA Archer Policy and Risk Management
  • SolarWinds for SolarWinds Network Configuration Manager
  • Tripwire for Tripwire Enterprise
  • Trustwave for Trustwave Compliance Manager

Best SIEM Solution
Security information and event management (SIEM) tools are used to collect, aggregate and correlate log data for unified analysis and reporting. Typically, these tools can take logs from a large number of sources, normalize them and build a database that allows detailed reporting and analysis. While forensic analysis of network events may be a feature of a SIEM, it is not the only feature, nor is it the primary focus of the tool.

  • AlienVault for AlienVault’s Unified Security Management (USM)
  • Intel Security for McAfee Enterprise Security Manager
  • LogRhythm for LogRhythm Security Intelligence Platform
  • SolarWinds for SolarWinds Log & Event Manager
  • Splunk for Splunk Enterprise

Best UTM Security Solution
Given the continuous convergence of the market, we’ve decided to retire some categories this year and integrate a number of individual categories from previous years into this unified threat management (UTM) category. The former categories – Best Enterprise Firewall, Best Intrusion Detection System/Intrusion Prevention System Product, Best IPsec/SSL VPN and Best Anti-Malware Gateway – are now integrated here. As formerly, contenders in the UTM security category should take an “in-depth” defense approach. Entrants should have an integrated, multifunction endpoint/UTM offering – not a single-function product. These products typically aggregate a wide variety of threat data into a single unified tool. Many organizations define those threat categories as anti-malware, content management, IDS/IPS and spam filtering, along with firewall/VPN. Entrants should meet this minimum functionality, although they may include anti-malware gateway, anti-spam gateway, anti-phishing gateway and more. Products function at the endpoint or the gateway, or are hybrid gateway/endpoint solutions.

  • Barracuda for Barracuda Firewall
  • Check Point Software Technologies for Check Point 600 Appliance
  • Dell for Dell SonicWALL Unified Threat Management
  • Fortinet for FortiGate/FortiWiFi-60D-POE
  • Juniper Networks for SRX Series Services Gateways

Best Vulnerability Management Solution
These products perform network/device vulnerability assessment and/or penetration testing. They may use active or passive testing, and are either hardware- or software-based solutions that report vulnerabilities using some standard format/reference.

  • BeyondTrust for Retina CS Enterprise Vulnerability Management
  • Malwarebytes for Malwarebytes Anti-Exploit
  • Qualys for Qualys Vulnerability Management (VM)
  • Rapid7 for Nexpose Ultimate
  • Tenable Network Security for Nessus Enterprise Cloud

Best Web Application Firewall
Application firewalls inspect the body of packets and restrict access to legitimate application traffic while blocking access to other parts of the operating system. They typically use deep-packet inspection, provide logging and reporting, block real-time traffic, provide alerting capabilities and auto-update features, perform web caching, provide content filtering, offer web-based access to reporting and/or logging, protect traffic from reaching the underlying operating system, and filter application traffic to only legitimate requests.

  • Alert Logic for Web Security Manager
  • Barracuda for Barracuda Web Application Firewall
  • F5 Networks for F5 BIG-IP Application Security Manager (ASM)
  • Fortinet            for FortiWeb-1000D Web Application Firewall
  • Trustwave for Trustwave Web Application Firewall

Best Web Content Management Solution
Products in this category provide web content filtering for laptops, desktops and, optionally, servers They may block or filter objectionable websites and content and – to update the vendor-provided data on which the solution is based – enlist blacklist, whitelist or both.

  • Blue Coat Systems for Blue Coat PacketShaper
  • Cisco for Cisco Web Security Appliance
  • EdgeWave for iPrism Web Security
  • iboss Network Security for iboss Secure Web Gateway
  • McAfee for McAfee Web Protection
  • Websense Triton AP-Web

EXCELLENCE AWARDS

Best Customer Service
Support and service of products and services sold are critical components of any contract. For many organizations that seek out help from information security vendors and service providers, the assistance they get from customer service representatives is crucial to the deployment, ongoing maintenance and successful running of the technologies they’ve bought and to which they have entrusted their businesses and sensitive data. For this new category, we’re looking for vendor and service providers that offer stellar support and service – the staff that fulfilled its contracts and maybe even goes a little beyond to ensure that organizations are safe and sound against the many threats launched by today’s savvy cybercriminals.

  • Barracuda 
  • Proofpoint 
  • Qualys 
  • Rapid7
  • Thycotic 

Best Emerging Technology
What cutting-edge technologies with innovative capabilities are bursting onto the scene to address the newest information security needs facing organizations? This new category welcomes both new vendors and old pros looking to provide products and services that – through the creation of these types of offerings – look to help shape the future by addressing fast-evolving threats. Solutions should have just hit the market in the last six to 12 months, and entries should have some customers available who can act as references. The company should also have an office in North America and provide ready support and service to customers in this country.

  • Cisco for Cisco Advanced Malware Protection
  • Cylance for CylancePROTECT
  • Proofpoint for Proofpoint Threat Response
  • Skyhigh Networks for Skyhigh Secure
  • Palo Alto Networks for Traps Advanced Endpoint Protection

Best Enterprise Security Solution
This includes tools and services from all product sectors specifically designed to meet the requirements of large enterprises. The winning solution will have been a leading solution during the last two years, having helped to strengthen the IT security industry’s continued evolution.

  • Cisco for Cisco FirePOWER 
  • CyberArk for CyberArk Privileged Account Security Solution
  • Palo Alto Networks for Palo Alto Networks Enterprise Security Platform
  • Splunk for Splunk Enterprise
  • Vormetric for Vormetric Data Security Platform

Best Regulatory Compliance Solution
Nominated solutions should help organizations comply with specific regulatory requirements demanded of companies in the health care, retail, educational, financial services and government markets. Solutions should help customers meet mandates noted in such legislation as HIPAA, SOX, GLBA, FISMA, or in guidelines noted by the likes of the FFIEC or the PCI Security Standards Council. Nominees must be prepared to offer references for customers who are engaged in, or have already completed, real, fully fledged deployments, and should be ready to address specific questions posed to them during the judging process.

  • Agiliance for RiskVision 7
  • Qualys for Qualys Policy Compliance (PC)
  • Tenable Network Security for SecurityCenter Continuous View
  • Tripwire for Tripwire Enterprise
  • Trustwave for Trustwave TrustKeeper for Compliance

Best Security Company
Nominees should be the tried-and-true, longer-standing companies which have been offering products and services to customers for at least three years. Nominations can come from all sectors. Areas that will be accounted for in the judging process include: product line strength, customer base, customer service/support, research and development, company growth and solvency, innovation and more.

  • Check Point Software Technologies 
  • FireEye
  • Qualys
  • Trend Micro
  • Veracode

Best SME Security Solution
This includes tools and services from all product sectors specifically designed to meet the requirements of small to midsized businesses. The winning solution will have been a leading solution during the last two years having helped to strengthen the IT security industry’s continued evolution.

  • Barracuda for Barracuda Spam Firewall
  • Check Point Software Technologies for Check Point 600 Appliance
  • iSheriff for iSheriff Cloud Security
  • Network Box USA for Network Box Managed Security Solution
  • Qualys for Qualys Express Lite

Rookie Security Company of the Year
Nominated companies should be new to the IT security field – offering an initial, strong, flagship product that is within two years of its initial release. Nominees can come from any IT security product/service sector and will be continuing efforts in further product development, customer growth and overall fiscal and employee growth. Please note in your submission the launch date of your initial flagship offering. If this initial offering or any of your other products have been on the market for longer than two years, please do not submit a nomination in this category.

  • Cyphort
  • Elastica
  • Netskope
  • Skyfence
  • Sumo Logic

PROFESSIONAL CATEGORIES

Best Cybersecurity Higher Education Program
This category includes the best cybersecurity undergraduate or higher education program which currently has a cybersecurity degree program. These are for schools throughout the United States. Qualification is based on the quality of instruction, programs and how well these prepare students for the marketplace.

  • (ISC)2 for Global Academic Program
  • Champlain College for Cybersecurity and Digital Forensics
  • SANS Technology Institute for Master of Science in Information Security Engineering

Best Professional Certification Program
Programs are defined as professional industry groups offering certifications to IT security professionals wishing to receive educational experience and credentials. Entrants can include organizations in the industry granting certifications for the training and knowledge they provide.

  • (ISC)2 for Certified Secure Software Lifecycle Professional CSSLP
  • (ISC)2 for CISSP
  • Global Information Assurance Certification (GIAC) for GIAC Security Expert (GSE)
  • ISACA for Certified information Security Manager (CISM)
  • ISACA for Certified Information Systems Auditor (CISA)


Best IT Security-related Training Program
Programs are defined as those geared toward strengthening expertise of information security professionals via training, by an outside industry expert, on secure coding, end- user awareness and more. Entrants can include companies offering such training and which does not conclude with the winning of a particular professional certification.

  • (ISC)2 for (ISC)2 Education/Training Program
  • Guidance Software for EnCase
  • RSA, the security division of EMC for RSA Education Services’ Advanced Cyber Defense Curriculum
  • SANS Institute for SANS Securing the Human (STH)
  • Wombat Security Technologies for Security Education Platform

Best Security Team
Contenders should only include teams from end-user companies that have executed and are managing exceptional and strong security programs, which they have built from virtually non-existent ones. The team should have successfully established and implemented an integral and/or innovative/cutting-edge component of their security program, and should have spearheaded various areas of support for its success, such as strong end-user awareness training, good configuration management, and more.

Please note: Professionals who work for an IT security vendor, IT reseller or IT consultancies are not eligible for this category.

  • Government of New Brunswick for Security Event Management Team 
  • Troy University IT Secure Operations Team for Troy IT SOC
  • Voya Financial for Technology Risk and Security

CISO of the Year
Contenders should include those who work for end-user companies only. No vendor CSOs will be considered. Nominees are the cream of the crop – having spearheaded a viable IT security program; gained the support of their company’s executive leaders, as well as their colleagues; and helped – through their indefatigable efforts – to propel the CISO/CSO position to a footing of influence within their organization and the corporate world as a whole. Specific projects and undertakings, as well as over-arching security programs to propel these various goals, should be noted. Nominees should be prepared to answer further questions during the judging process, offer at least two references, and be open to holding confidential interviews with members of the SC Magazine editorial team, if warranted.

Please note: Professionals who work for an IT security vendor, IT reseller or IT consultancies are not eligible for this category

  • Gene Fredriksen, CISO, PSCU
  • Christopher Ipsen, CISO, state of Nevada
  • John Masserini, CISO, MIAX Options
  • Myrna Soto, CISO, Comcast 
  • Bruce Wignall, CISO, Teleperformance Group