A $2,000 check in your mailbox is normally good news. In early May, however, it was definitely bad news for one unnamed Washington, D.C.-based federal agency CSO. The reason? He’d hired a team of “ethical hackers” from Internet Security Systems (ISS), an Atlanta-based security software and systems vendor. The team’s mission was to probe the agency’s system over the Internet and identify its weaknesses. “Hacking the system to send him a check seemed like a neat way to report back on what we’d found,” says Chris Klaus, cofounder and CTO.Admittedly, many of ISS’s 9,000 customers?which include 49 of the Fortune 50?hire the company for less exciting tasks. Dealing with viruses, worms, Trojan horses and distributed denial-of-service attacks is more standard fare. So too is counterterrorism. ISS officials frequently interface with government agencies such as the National Infrastructure Protection Center, the Critical Infrastructure Assurance Office and the National Security Commission. Tom Noonan, ISS president, cofounder and CEO, also consults with national security officials.A growing number of customers have hired ISS, and other security companies such as Enterasys Networks and Cisco Systems, to maintain a real-time watch over their firewalls and systems. At monitoring stations?located in Atlanta; Detroit; Helsingborg, Sweden; Padova, Italy; Rio de Janeiro, Brazil; and Tokyo?ISS technicians sit in NASA-style control rooms. Giant screens display the state of Internet traffic and the number of hacks currently in progress. A “battle captain” in Atlanta balances the workload across the six centers, while technicians monitor customers’ networks and work with their security personnel. SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe As a rule, ISS doesn’t manage corporate networks. “We tell them when they are under attack and what sort of attack it is. We tell them what the risk is and if the attack is going against a network that is vulnerable to that attack,” says Klaus on a recent tour of the Atlanta monitoring center. If ISS is allowed management control of the network, it will also attempt to kill the attack. However, many of the customer companies’ corporate policies preclude handing over such management control. As concerns about cybercrime rise, Klaus sees many enterprise systems ripe for the plucking. The trick is to build capabilities that prevent dollars from stuffing hackers’ mailboxes. Related content brandpost Fireside Chat between Tata Communications and Tata Realty: 5 ways how Technology bridges the CX perception gap By Tata Communications Sep 24, 2023 9 mins Emerging Technology feature Mastercard preps for the post-quantum cybersecurity threat A cryptographically relevant quantum computer will put everyday online transactions at risk. Mastercard is preparing for such an eventuality — today. By Poornima Apte Sep 22, 2023 6 mins CIO 100 Quantum Computing Data and Information Security feature 9 famous analytics and AI disasters Insights from data and machine learning algorithms can be invaluable, but mistakes can cost you reputation, revenue, or even lives. These high-profile analytics and AI blunders illustrate what can go wrong. By Thor Olavsrud Sep 22, 2023 13 mins Technology Industry Generative AI Machine Learning feature Top 15 data management platforms available today Data management platforms (DMPs) help organizations collect and manage data from a wide array of sources — and are becoming increasingly important for customer-centric sales and marketing campaigns. By Peter Wayner Sep 22, 2023 10 mins Marketing Software Data Management Podcasts Videos Resources Events SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe