It is imperative for enterprises to protect themselves from potentially harmful traffic. Network security software helps network administrators keep track and neutralize unauthorized access or denial of network resources through phishing, Trojan horses, spyware, worms and other vendor-specific vulnerabilities.
Network security software suites usually contain a number of different technologies. Traditionally, the two major components were firewalls, which were designed to only permit specific protocols and ports, but were essentially ignorant as to whether websites being accessed were malicious.
Secure web gateways were designed to perform web filtering and to block websites that were on a blacklist. The tools tend to be used independently of each other and are used to secure the periphery of a company’s infrastructure.
Recent developments augment these strategies by sharing data across multiple systems and correlating information to better understand potential threats. Next-generation firewalls are able to sniff out malicious packets through “deep packet inspection” techniques. Secure gateways have also become more sophisticated with a focus on web-based virus signatures, not just forbidden URLs.
Another recent development is the emergence of malware sandboxes creating a safe environment where tests can be run on suspicious data.
The advent of the BYOD era has also brought more reliance on network access control software to protect the network internally by making sure that devices identify themselves on the network which can regulate access rights.
Network security management covers a variety of different technologies making it difficult to make general statements about pricing. Firewall devices have a broad range of costs depending on the complexity of the environment. Firewall appliances start at around $100 or less, while enterprise firewalls can cost over $25,000. Pricing structures vary, but a common approach is tiered pricing by the number of users. Secure web gateway pricing takes a similar approach.
WatchGuard Network Security is a network security and firewall software. WatchGuard includes secure Wi-Fi, multi-factor authentication, and network intelligence products and services designed for SMB’s.
FireMon's Network Security Policy Management (NSPM) platform gives security and operations teams automated visibility and analysis for network security devices. FireMon's web-based UI allows users to dissect their network security policies, locate compliance failures, and assess security vulnerab...
Symantec Advanced Threat Protection is a single unified solution that uncovers, prioritizes, and remediates advanced attacks. The product fuses intelligence from endpoint, network, and email control points, as well as Symantec’s massive global sensor network, to stop threats that evade individual...
Metasploit is open source network security software supported by Boston-based Rapid7.
The Qualys Cloud Platform (formerly Qualysguard), from San Francisco-based Qualys, is network security and vulnerability management software featuring app scanning and security, network device mapping and detection, vulnerability prioritization schedule and remediation, and other features to prov...
Darktrace headquartered in San Francisco provides enterprise network security with its machine learning autonomous network traffic analysis (NTA) software, providing an "Immune System" that detects novel or insider threats arising from malicious behavior.
FireEye, from the company of the same name in Milpitas, California, offers the FireEye Security Suite, a threat detection and antivirus application encompassing FireEye Email Security, FireEye Network security, and FireEye Endpoint Security. Finally, the Suite includes FireEye Helix as a security...
Cisco routers support secure, reliable enterprise connections. These enterprise routers help users implement an intent-based, future-ready WAN that is constantly learning, adapting, and protecting. Deploy routers for the branch, cloud, co-location, or the data center with any type of connectivity...
RSA NetWitness Network (formerly RSA Security Analytics) is network detection and response security application from RSA Security.
Qualys Private Cloud Platform is the on-premise version of the Qualys Cloud Platform, from Qualys in Redwood City. The platform is designed for entities with strict data sovereignty rules, to patch and reduce enterprise network vulnerability while providing compliance with data security policy.
IOS Security from Cisco is network security technology.
Gigamon in Santa Clara offers their suite of interrelated applications in the Gigamon Platform, a network security suite dedicated to providing total visibility and visualization of network activity for both operational efficiency and security that comprises traffic management application GigaSMA...
The Symantec Encrypted Traffic Management solution (formerly from Blue Coat Security) delivers encrypted traffic management solutions providing comprehensive, policy-based visibility and control over encrypted traffic, maximizing its benefits and minimizing its risks. According to the vendor, Blu...
ZeroFOX is a security tool for social media & digital security across social, mobile, web and collaboration platforms.
SolarWinds Threat Monitor empowers MSSPs of all sizes by reducing the complexity and cost of threat detection, response, and reporting. You get an all-in-one security operations center (SOC) that is unified, scalable, and affordable.
Netrounds, from the Swedish company of the same name, is network diagnostic, security, and performance monitoring software.
Guardicore from the company of the same name is network security software.
Area 1 Security is network security software, from the company of the same name.
DB Networks DBN 6300 is network security technology, from DB Networks in Carlsbad, California.
Tempered Networks is network security technology from the company of the same name in Seattle, Washington.
TrueSight Automation for Networks automates the management of security vulnerabilities, configurations, compliance, and provisioning. Network administrators can take corrective action to reduce the risk of breaches and reduce network outages. It also increases staff productivity and allows labor ...
Brinqa Risk Analytics is a governance, risk, and compliance (GRC) management platform from Brinqa headquartered in Austin, Texas.
AppGate SDP (software-defined perimeter) from Cyxtera Technologies headquartered in Addison is a zero trust network security product.
LANGuardian from Irish company NetFort Technologies is network security and performance monitoring technology.
SecPod Saner endpoint security solution provides continuous visibility and control for all endpoints. It proactively remediates risks and detects and responds to threats. Saner combines endpoint vulnerability, patch and compliance management with endpoint threat detection and response into one ea...