Wednesday, March 20, 2013

Lies, Damn Lies, and Security Claims


Lies, Damn Lies, and Security Claims

If you are a CISO or any IT security professional reading this blog, we owe you a sincere apology.  And by we, I mean every security vendor on the planet – all of us.

Your job is tough enough, trying to figure out how to stay one step ahead of the bad guys trying to breach your network and make money off your hard work.  For help, you turn to trusted security vendors, and what do we do?  We hammer you with outrageous claims and half-baked solutions that don't actually do anything useful.

Sure, maybe each one of these on its own is crap, but . . .here's the exciting part.  If you could put all this stuff together, you'd finally have what we've all been telling you that you need: an advanced, heuristics-enabled, rack-mounted, white-listed, cloud-powered, forensics-equipped, sandbox.  Yup, nothin' says security like a sandbox, right?  OK, maybe a sieve or colander – they're probably just as secure.

twain

All of this stuff is based on the same basic unspoken vendor marketing promise, which is this:  look, none of us are ever going to be able to stop the bad guys, and we've all pretty much given up on that crazy idea, but we will do our very best to tell you as quickly as possible that you've already been attacked and probably lost a lot of money.

Of course, you'll probably never hear that promise, refreshing though it may be.  Instead, to paraphrase Mark Twain, we feed you lies, damn lies, and security claims. So don't believe anything we say!

Wait, what?  Did I just tell you to ignore us?  But we're Bromium – an innovative security vendor that is radically re-inventing the endpoint security market!  Shouldn't you believe everything we say?

Hmmm, no.  For your own piece of mind, don't believe us either.  The only thing you should believe is your own personal experience with Bromium.  Yes, we stop 100% of all known and unknown malware at the endpoint.  Absolutely, we provide real-time insight and analysis of the complete attack cycle.  Sure, this was all validated by a recent NSS Labs test report.  Nevertheless, listen to Mark Twain and assume these are all lies.  What you need to do is first see a demo, then test it in your organization.  Even better, test Bromium alongside anything else you want.   Now that will make you a believer.


Original Page: http://blogs.bromium.com/2013/03/20/lies-damn-lies-and-security-claims/



Sent from my iPhone
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)