Best Computer Forensic Solution
Products in this category fall into two sub-categories: network and media. The network tools must be exclusively intended for forensic analysis of network events/data. If the product is a SIEM with forensic capabilities, it should be placed in the SIEM category. Media tools cover just about all other non-network forensic tools, including those tools that collect data from media over the network and live forensic tools. This also includes specialized forensic tools that are not intended to analyze network data.
Forcepoint for SureView Insideer Threat
Guidance Software for EnCase Forensic and EnCase Endpoint Investigator
Infocyte for HUNT
LogRhythm for Network Monitor
Symantec for Blue Coat Security Analytics Platform
Best Identity Management Solution
Products in this category address the identity management lifecycle in an enterprise environment, including password management, user provisioning and enterprise-access management.
CA Technologies for CA Identity Suite
Centrify for Identity Service
CyberArk for Privileged Account Security Solution
SecureAuth for SecureAuth IdP
SSH Communications Security for Universal SSH Key Manager (UKM)
Best NAC Solution
Protecting host-based computing platforms and network resources from threats that are brought in by employees, vendors, contractors and guests involves a numbers of solutions and policies. From anti-virus and firewalls to IDS/IPS solutions, the products in this category run the gamut. However, to control access to network resources at the endpoint, the tools companies often rely on are network access control (NAC) products. These solutions can be used to validate the existence of certain security measures and validate that they are properly configured and up to date. They also can validate the existence of current OS patches and can be used to manage the complexity associated with overseeing permissions and authorizations for various groups of users. Most will integrate with a common directory structure, some will provide local authentication capabilities, while others will match something on the endpoint – such as an agent or MAC address – to the authentication before allowing access to the protected network resources.
Cisco for Identity Services Engine (ISE)
F5 Networks for F5 BIG-IP Access Policy Manager (APM)
ForeScout for CounterACT
Hewlett Packard Enterprise for Aruba ClearPass
IntelliGO Networks for Network Access Control
Best Behavior Analytics/Enterprise Threat Detection
A still somewhat-emerging category, these products focus on detecting insider threats, targeted attacks and other fraudulent activities by examining human behaviors, sussing out patterns that are then analyzed through the application of algorithms and statistical analysis to detect anomalies that may indicate threats of loss or compromise to organizations’ critical data. Offerings in this space are also referred to as so-called “user behavior analytics” products by analyst company Gartner.
CrowdStrike for Falcon
Imperva for Counterbreach
Rapid7 for InsightIDR- Escape Alert Fatigue, Relentlessly Hunt Threats
SentinelOne for Endpoint Protection Program
Splunk for UBA 3.0 (User Behavior Analytics)
Best Regulatory Compliance Solution
Nominated solutions should help organizations comply with specific regulatory requirements demanded of companies in the health care, retail, educational, financial services and government markets. Solutions should help customers meet mandates noted in such legislation as HIPAA, SOX, GLBA, FISMA, or in guidelines noted by the likes of the FFIEC or the PCI Security Standards Council. Nominees must be prepared to offer references of customers who are engaged in, or have already completed, real, fully fledged deployments, and should be ready to address specific questions posed to them during the judging process.
Forcepoint for TRITON AP-DATA
Netwrix Corporation for Netwrix Auditor
NextLabs for Information Risk and Compliance Suite for SAP
Proofpoint for Information Protection, Archive, and Compliance
Securly for Securly