The StillSecure Security Alert Team™ (SAT) ensures that StillSecure customers are protected from the latest network security threats. Working on 24x7 basis, SAT releases new and updated rules as new threats are identified. SAT-released rules ensure compliance with security and regulatory standards and minimize false positives/negatives.

SAT releases rules for all StillSecure® solutions in industry-standard open source formats. StillSecure solutions can be configured to check for updated SAT rules as frequently as every hour, or users can download rule updates on demand, ensuring up-to-the-minute protection. The SAT rule development and release cycle is shown at left.

Primary SAT activities include:

SAT rule development process
SAT compiles the rule sets for StillSecure products from two primary sources: internal, SAT-developed rules and externally developed rules available from open-source development groups. As a result of this multi-source approach, SAT-distributed rule sets are the most comprehensive, highest quality, and most protective in the network security market.

SAT's four-step rule development and release process is shown in the figure to the left.

Developing integrated compliance and regulatory rule sets
SAT distributes rule sets that satisfy industry-standard security benchmarks such as SANS Top 20 and the Department of Defense (DoD) IAVA. As new rules are developed that fall within these rule sets, and as the benchmarks themselves are updated, SAT tags applicable rules and automatically adds them to the appropriate rule set. Organizations that must comply with these standards are assured that StillSecure products automatically defend against the threats on these benchmarks.

In addition to the benchmarks mentioned above, SAT is in the process of developing regulatory rule sets for other key benchmarks, such as FISMA, Sarbanes-Oxley, and a number of others.