Originally published at: https://indeni.com/blog/indeni-insight-is-coming-your-questions-answered/
Indeni Insight mandatory starting January 1st 2019
As of January 1st 2019, Indeni Insight will be mandatory in every Indeni installation. As an Indeni customer, you’re probably wondering why, what’s the value to you, and how safe it is.
What’s Indeni Insight again, and why do I want it?Indeni Insight is a cloud based service that verifies Indeni Best Practices are in place, notifies you of urgent vulnerabilities, and in the future will be the function that delivers ROI and benchmark reporting for your Network and Security Operations leadership teams.
Indeni Insight sends non-confidential data from your Indeni instance to our cloud database. In addition to receiving valuable insights for day to day operations, our product team leverages Indeni Insight data to prioritize new features and knowledge modules for our platform. The Indeni Roadmap revolves around collecting the most amount of knowledge, and sharing it with many audiences inside IT. Therefore Indeni Insight will be a mandatory component of how we collect information and deliver services to our customer base.
Indeni Insight Services and Capabilities At A Glance:1. Automated Support - Indeni Insight is a cloud system that watches each install of Indeni for potential issues, misconfigurations and missing best practices. Essentially an Indeni-for-Indeni, with the added benefit of our technical services team being pulled in to help. We will watch your Indeni instance for you.
- Customer-specific Reports - Indeni Insight provides benchmarking of your environment vs others as well as specific actionable information.
- Critical notifications - Some of the products Indeni supports have had recent severe vulnerabilities. When Indeni receives this information from the partner, Indeni will look through our database to identify affected customers and send them an out of band alert immediately. That way, you know you won’t miss such critical events.
- Big Data and Analytics based rules - We are interested in providing more advanced analysis capabilities so that you can be notified of longer-term issues. This requires a lot of storage space and computation power and will cost you, our customer, a lot less if stored on our public cloud infrastructure (such as Amazon Web Services, Microsoft Azure and Google Cloud) instead of your own on-premises equipment. These algorithms will be reviewing numerical data and no confidential information.
The list goes on, and a few of these will be launched in the coming months, the rest rolled out in 2019.
Yes, but why mandatory? Why must I have Insight enabled if I don’t want the above services and capabilities?
In order to be able to keep up and continue improving our service to our customers, the quality of the knowledge we provide and the health of the underlying platform, we must have all our customers on Insight. Today, most of our customers are already on Insight, so you’ll be in good company. This will be beneficial for you immediately, and will become more and more beneficial over time.
How will you protect my data?We have written documentation with regards to what data is being collected and how it is handled to show that no exposure can occur to our customers as a result of enabling Insight. The gist is that no IP addresses, device names, credentials or firewall rules are collected. We are happy to work with your InfoSec team on reviewing this.
But InfoSec is going to make my life hard on this one!We know InfoSec can sometimes be challenging to deal with when it comes to issues like these. Of course, they are only doing their job and we’d be glad to offer our help. Any questions or documents you get from InfoSec to respond to we will fill out for you. Our goal is to make sure this isn’t more painful to approve internally than it must be.
We look forward to serving you even better in the future, with the power of Insight.