Skybox Security Suite Benefits

Randy Watkins
Director, Security Architecture at a tech services company with 51-200 employees
Specifically, in the Vulnerability Management piece, vulnerability management products are very noisy and they provide this arbitrary score called the CVSS that rates the criticality of the vulnerability. How bad would it be if somebody were to exploit this vulnerability? That doesn't matter if I have something on the network that prevents that vulnerability from being exploited. What Skybox does is to allow organizations, including three of my largest customers, to reprioritize the vulnerability they attempt to patch and mitigate, based on the contextual awareness of the network. Also, for the vulnerability, it's the operational efficiency of the patching team. Patch management programs are very expensive to run from a headcount cost, and also from a potential downtime cost, and there is a never-ending stream of vulnerabilities. The ability to contextualize those and recast them in a meaningful way to my organization, and to all my customers, has been very valuable in increasing the efficiency of the patching process. With the Firewall Assurance, that changes the way applications are introduced into the environment. So instead of asking for firewall rules which may or may not be relevant, or could already be there, or could be over-permissioned, Skybox can be used to map out the resources that that application is going to use and provide the exact rules that an application would require to function correctly. If the traffic isn't able to flow for the application, if it's erring out, Skybox can be used to troubleshoot that and say, "All right, where is the traffic being stopped and why, and how do I fix that." View full review »
Sharath K
Sr. Consultant at a tech services company with 10,001+ employees
It's given us more visibility in terms of what are the kinds of configurations that are on these devices, and how many of these are stale rules. So it's helped greatly in terms of cleaning up of rules, for sure. And it has definitely given a more secure way of backing up the configuration on these devices. View full review »
Information Security Consultant at a insurance company with 1,001-5,000 employees
What we have done is found a lot of misconfigured stuff on firewalls. Our company, Verisk, is a company that buys other companies. We have 70 or so companies at last count and most of them are founder-based companies we bought. They had little to no idea of how to actually secure a firewall correctly. Using Skybox, when we bring them on we take a look at how their firewalls are configured and then make recommendations as far as what they need to do to tighten it up. That is the main function we've been using it for and that is where we have gotten the most benefit out of it. From Firewall Assurance, the only other real benefit you get is eliminating shadowed rules and redundant rules. You can optimize a little bit based on real usage to move the rules that are used more towards the top of the access lists so that the firewall processes them a little faster. It's a small benefit but it's definitely something that, depending on your business, may be important to you. View full review »
Find out what your peers are saying about Qualys, Skybox Security, Rapid7 and others in Vulnerability Management. Updated: June 2019.
348,275 professionals have used our research since 2012.
Information Security Architect with 201-500 employees
It has automated things. What was a manual process is now just running a report and delivering it to the people who have to mitigate the issues. A better workflow. View full review »
Vishal Bindra
CEO at a tech services company with 51-200 employees
When we are adding new users to the network it has an impact on the security posture of the organization. So we use this product to do analysis, what kind of impact it will have on the security. What are the particular applications which may be required in terms of access controls, what are the changes, what are the policies we should put on the firewall? And in case we need to have a temporary policy, we can then revert back to the original one. All of these things have really helped us improve the security and network systems. View full review »
Senior Information Security Analyst at a energy/utilities company with 501-1,000 employees
It has grown organically and become a full featured suite. If you have the funding, you can make it do all types of great things. View full review »
Gerhard Schwegler
Networks Vice President at a tech services company with 1,001-5,000 employees
This is something we are on the way to doing. View full review »
Lisa Niles
Director of Solutions Integration at a tech services company with 51-200 employees
Focuses resources on business-critical remediation, as opposed to remediation that is quantity-based. View full review »
Andrea Ghislandi
CEO at a tech services company with 51-200 employees
Standard scanning solutions are not able to give any priority in terms of associated risk from identified vulnerabilities. Understanding the real exposure from vulnerabilities and associated assets can reduce the time and investment needed to mitigate risks. Also, by reducing the number of vulnerabilities that have to be analyzed and managed we have the chance to create a process of management. View full review »
IT Security Specialist with 10,001+ employees
User interface. A web interface would be better. View full review »
Find out what your peers are saying about Qualys, Skybox Security, Rapid7 and others in Vulnerability Management. Updated: June 2019.
348,275 professionals have used our research since 2012.

Sign Up with Email