The Red Portal: IBM X-Force Red’s Collaborative Client Experience

IBM X-Force Red is a group of security professionals and ethical hackers whose goal is to help businesses discover vulnerabilities in their computer networks, hardware and software applications before cybercriminals do. X-Force Red, part of IBM Security Services, also examines human security vulnerabilities in daily processes and procedures that attackers often use to circumvent security controls.

 

X-Force Red Introduces The Red Portal

Today, IBM X-Force Red is announcing The Red Portal, a cloud-based collaboration platform for clients and security professionals that presents an end-to-end view of security testing programs. Clients can view real-time testing project milestones, vulnerabilities across all assets, reports of findings and the overall status of their managed testing program.

IBM X-Force Red will hold a webinar on March 27 for clients unable to attend our live demonstrations at the RSA Conference in San Francisco, which will be held from Feb. 13 to 17.

Register for the webinar: How to Accelerate Your Security Testing Expertise

The industry expertise of X-Force Red is central to successfully building and maintaining a top-notch security testing program, and the collaborative nature of The Red Portal makes it easier than ever for clients to be involved in the testing process. I’d like to highlight some key features of our portal to give you an idea of what’s in store for users and why we’re so excited to be at RSA.

The Dashboard

The Dashboard page provides a real-time view of the client’s overall security testing program. They can see how many tests have been conducted and the total number of findings that have been identified, including the number of critical and high-risk items.

Clients can also view how many tests are in each phase of the testing process and whether any are awaiting additional client input. Up-to-date test statuses are a simple login away, allowing clients to embed themselves in the testing process as little or as much as they want.

IBM XFR- The Red Portal Dashboard

Scheduling a Test

The Red Portal centralizes and streamlines all communications with X-Force Red and eliminates the need to pass sensitive target information through insecure methods. All test requests are made via one simple, secure form, and required target information is also collected here. All target and finding information is encrypted. Clients can also define their desired testing start date with the built-in scheduling capability.

IBM XFR- The Red Portal New Test Request

Reviewing Findings and the Final Report

Once the security test has begun, clients can view findings as the tester makes them available — meaning remediation can begin immediately on the most critical items. After the test is complete, an interactive final report is available from the dashboard. The final report contains all findings, including details about the vulnerabilities, evidence of exploitation and detailed guidance for remediation and prioritization.

IBM XFR- The Red Portal Final Report

We hope you will stop by the IBM Security booth (No. 3535 at North Hall) at RSA to see a demonstration of The Red Portal and hear more about our comprehensive security testing capabilities, including how our consumption models can fit your shifting priorities.

Learn More About IBM’s Presence at RSA 2017

Share this Article:
Krissy Safi

Sr. Security Services Offering Manager, IBM

Krissy is a security innovator and disruptor who challenges the status quo no matter what role she is in or hat she is wearing. What started as a "hobby" when she was a kid turned into her first college internship as a penetration tester at IBM and has blossomed into a diverse and exciting career in security. Over the past 15 years, she has held various security roles, ranging from advising on and managing enterprisewide security and risk management programs for Fortune 100 and government agencies to bringing new products and services to market in IAM, security intelligence and application security. Currently, Krissy is the senior global security services offering manager for IBM's X-Force Red Offensive Security Services, launching new capabilities backed by an elite team of celebrity security testers. Krissy is actively involved in her local PTECH program, mentoring the next generation of security innovators.