Aruba ClearPass Internal Discussions from June 29, 2016

Summary:

Scott Bodo is a consultant focusing on improving systems for sales teams and POCs using security technologies from companies like Palo Alto Networks, Juniper Networks, ArcSight, and Bell. He works on large-scale projects integrating an Ingress Event Engine that analyzes syslog data for threats. Sam Vergiris, a Sales Executive at Sell through Bell and Sell to Bell, is focused on strategic partnerships with large organizations including Bell. He discusses enhancing the ArcSight solution within Bell's systems by deploying an Ingress Event Engine which uses syslog data and signature-based methods to detect attack vectors across various network devices like Palo Alto Networks and Juniper Networks. Vergiris also highlights a technical implementation using a Python script that interfaces between ArcSight and ClearPass via REST API, demonstrating innovation in bridging different security platforms.

Details:

Scott Bodo is a Systems Engineering Consultant at ClearPass Consulting, specializing in enhancing systems and solutions for sales teams and point of contact (POC) individuals. He focuses on large-scale design and implementation projects that leverage the capabilities of various security technologies like Palo Alto Networks, Juniper Networks, ArcSight, and Bell products to bolster their offerings by integrating an Ingress Event Engine which analyzes syslog data for potential attack vectors. On the other hand, Sam Vergiris is a Sales Executive at Sell through Bell and Sell to Bell, focusing on strategic partnerships with large organizations such as Bell. He discusses the integration of ArcSight solutions within Bell's existing systems to make them more robust. This includes enhancing the ArcSight solution by deploying an Ingress Event Engine that taps into syslog data and employs signature-based methods for detecting attack vectors across various network devices including Palo Alto Networks and Juniper Networks. Vergiris also mentions a specific technical implementation, where a Python script is used to interface between ArcSight and ClearPass via the REST API. This forward-looking approach showcases an innovative use of technology to bridge different security platforms, demonstrating a deep understanding of both system architecture and contemporary software development practices. It's important to note that while this solution has shown promise in enhancing cybersecurity measures, it remains unofficially mentioned whether such integration or script has been officially endorsed or tied to a specific ClearPass release.