The functions of AMPEG Security Lighthouse are structured according to the CACA Model. They all pursue one aim: to simplify a company’s job of exactly finding the computer systems that fail to comply with the corporate network's security guidelines, and to support resolving measures for continual improvement.

More rapid reaction to changes in the security status is made possible by the unique Security Information Map and compliancy check lists. Up-to-date cross-manufacturer analyses of the current status, and comparisons and trend analyses cater for the convenient flow of information.

Collect – Information Consolidation

• Relevant security information is collected every quarter of an hour from mail, web security and patch management applications, or other security applications, and standardised and saved to a central, SQL database.
• Information on currently available pattern/virus signatures and updates are called up on from the manufacturers of the security applications.
• The security information collated is held for up to a year for making monthly and quarterly comparisons reasons.
• Login option for accessing composite security information.

Analysis

• The current status is displayed in the Security Information Map every 15 minutes. If limiting values for security guidelines are exceeded at any one location this is displayed on the world map in red (traffic light feature).
• The proprietary network's security status is checked against currently available patterns and manufacturer's updates.
• The security information collated is analysed across all boundaries and manufacturers.

• Intuitive, geographical monitoring of the security status with Security Information Map.
• Compliancy check-lists with information per location and system at patch and pattern level.
• Pattern deployment: Views of the current status of pattern rollout and the history of long-term analyses of rollout behaviour in the corporate network (from ASL version 3.0 and above.
• Patch management: Diagrams and lists on the deployment status of the current patches and updates.
• Diverse statistical evaluations on spyware identified.
• Anti-spam diagrams for breaking down incoming mail according to spam, suspected spam, fraud, suspected fraud, inbound/outbound statistics and bandwidth savings' analyses.
• URL filter: Anonymous diagrams on the Top 10 URLs, volume analyses and statistics on website visited broken down according to category assigned.
• Analysis according to criteria for critical systems. Example: "the current pattern level of all SAP servers".
• Comparative statistics. Example: Malicious software attacks this week vs. last week.
• Differentiation according to client/server and messaging gateway products.
• Trend analyses broken down in weeks, months or quarters.
• Monthly or quarterly reports in PDF or table form.

Act

• Up-to-date, comprehensive security information permits targeted identification of computer systems that fail to comply with your company network's security policy.
• Comparative analyses and trend analyses support implementing measures for continual improvement.
• Automatic dispatch of critical state text messages and e-mail alerts.
• Roll-base information access. Example: an administrator in Asia is only allowed to see information for that region".
• Show your business associates that you have a permanent eye on your security systems.

Roll Management, Administration, Configuration

• Web cockpit - no setup on office PC required
• Administration and configuration on the web
• Freely definable security guidelines. Example: the global pattern rollout for 80% of the computer systems should take no longer than 80 hours"
• Integrated role management including LDAP access to active directory nodes
• Integrated rule type: threshold definition for individual locations

Security Systems Supported

• Virus protection
• Anti-spam
• Patch management
• URL filter