Allgress Insight and Risk Manager v4.1
June 03, 2013
Approx. c£6,434 for a small-subscription deployment; from c£16,000 for a perpetual licence for a larger organisation
- Ease of Use:
- Value for Money:
- Overall Rating:
- Strengths: Ease of use; price performance; some lucid visualisation tools
- Weaknesses: Policy library hosted in the cloud, even for on-premise solution
- Verdict: Takes a lot of the complexity out of risk management. A lot of value for the money
Allgress Business Risk Intelligence helps companies quickly and automatically aggregate data from security and compliance assessments and technical inputs and turn this into meaningful, actionable, risk-specific intelligence that can be aligned with the goals of the business. With Allgress, one can identify risk areas that are underexposed and reorder security priorities to better align with the current environment. It also helps administrators assess risk or compliance within their organisation by determining how closely it adheres to a particular standard.
The Insight and Risk Manager is sold as on-premise software running on the Microsoft platform, Windows Server 2008 R2 (x64) and SQL Server 2008R2 (x64). We were told that typical implementations take about two weeks. There is also a hosted, cloud-based model. Licensing is either perpetual or subscription-based on the model deployed. Pricing is based on the size of the organisation and the number of modules purchased.
Allgress is a risk platform that includes modules supporting assessments, vulnerability analysis, policy management, mitigation and incident management. It has a well laid-out user interface with tabs across the top for each function. It is preconfigured with a number of popular standards, and uses the Unified Compliance Framework (UCF) content library. The policy functionality is easy to use, but it is important to note, the library is hosted in the cloud, not locally within the on-premise solution. Assets come in from the user's vulnerability data and are manually entered or imported.
The visualisation capabilities are impressive. From the risk heat maps to the slick, wheel-based vulnerability graphs, data is presented in a usable and meaningful way. Trending techniques and business modelling offer a clear balance between past, present and pending threats to the business. One also has a beneficial 'what if' analysis tool to model changes or mitigations prior to investing or deploying. The web front end has been designed to support HTML5 so that users can deploy mobile devices to deliver assessments, manage risk or simply review posture.
Allgress Insight and Risk Manager is a flexible platform that can grow with the organisation's maturity level in managing risk, compliance and security. It can provide an efficient balance of timely, understandable results at a justifiable price point without the added complexity of an overabundance of functions. This could be a pro and con depending on one's needs. There are more sophisticated tools on the market but the value of this solution is to help both IT staff and non-technical-oriented leadership understand their vulnerability risk posture by employing a language they can comprehend. This is intended to prioritise IT resource investments to meet business objectives.
Standard eight-hours-a-day/five-days-a-week support is included with either the hosted or purchased licences. Extended 24/7 support is available at 30 per cent of the purchase price.
Allgress delivers a solution that can be deployed quickly so as to immediately deliver value through visualisation for all technical and business groups.
SC Webcasts UK
Information Security Manager
Infosec People - Hammersmith, West London
Junior Penetration Tester, Hertfordshire, to £35k + benefits
Infosec People - England, Hertfordshire
Cyber Security Architect
CYBER EXECS - London (Greater)
SOC Analyst, Aldershot, £47-56k + package
Infosec People - Hampshire, England, Aldershot
Senior Security Engineer
Loveworklife Recruitment - United Kingdom
Sign up to our newsletters
SC Magazine UK Articles
- Tesco Bank allegedly ignored warnings of hack from Visa
- Investigatory Powers and Digital Economy Bills could threaten economy
- Updated: A million German routers knocked offline by failed Mirai botnet attack
- Gooligan ad fraud malware infects 1.3M Android users, installs over 2M unwanted apps
- Microsoft update left Azure Linux virtual machines open to hacking
- SC Awards Europe 2016 winners announcements!
- ISIS radicalises 'lone wolves' through strong social media presence
- Updated: How will Brexit affect the cyber-security industry in UK and Europe?
- ICYMI: CEO Sacked; MS Zero-day; Passwords dropped; Ransomware wild, charging hack
- 9.2 million medical records for sale on darkweb
- ICYMI: Tesco warned; IP Bill threatens economy; German routers offline; Azure trojan; Gooligan fraud
- Data centres are on the move - where will they end up?
- 90% of ITDMs believe IAM is crucial to digital transformation success
- Research: Hacked companies could see customer exodus if breached
- Misconfigured drive exposes locations of explosives used by oil industry