Tihomir Babić
infoNET projekt
Tihomir Babic holds a BSc from the Faculty of Electrical Engineering and Computing in Zagreb, Croatia. He has been working on design, deployment and maintance of the security solutions from Cisco (IPSec SPA encryption, DMVPN, Cisco IOS Firewall) and Nokia/Check Point (security solutions based on VPN-1/Firewall-1). He also holds Check Point Security Expert and Cisco Certified Security Professional certificates.

How to Cope with Today's Network Security Technologies and Management?
Information Security arised as a branch of the IT science by introduction of the first serious threats. After that, Information Security started to devide to its own branches and if we look IT today, we see that Information Security is a part of every IT segment, even it is a part of non-IT areas (eg. surveillance systems). With numerous Information Security segments today, it is hard to say what is, and what is not a Security concern. Conclusion is that we cannot talk about security as an IT branch, but as an inherent part of every IT segment. One of the main questions of security is a question of security management, because if we cannot manage it, we cannot conrol it.
When it is about security in real network, we use different ways to protect it – firewalls, IPSes, IDSes, antivirus systems. All these products generate a great amount of logs and information which, at the end of the day, are impossible to monitor or even respond on in real time. Solution to this problem is SIEM (Security Information and Event Management) which gathers, normalizes and correlates all logs from your network making one unitary solution. That will help you to see the real threat and understand what is really going on in your network.