Savvius Vigil Works With HP ArcSight to Enhance Incident Response
Interoperability with premier security information and event management platform provides access to network packets from events weeks or months in the past.
WALNUT CREEK, Calif., April 21, 2015 – Savvius, a leader in packet-level network forensics, today announced the interoperability of Savvius Vigil, an appliance that enables event-triggered storage of network packets for incident response, with the HP ArcSight Security Information and Event Management (SIEM) platform. Savvius Vigil’s ability to store months of relevant network information means that organizations using HP ArcSight can now quickly investigate and respond to security incidents that occurred weeks or months ago with actionable forensic information from network traffic before, during, and after the event.
Security breaches commonly occur months before attacks are detected by security teams. Until Savvius Vigil, it wasn’t practical to store weeks or months worth of network packet data, so security analysts had only other log and incident data to rely on to investigate breaches that occurred more than a few days in the past.
Savvius Vigil responds to each threat detected by the HP ArcSight platform by storing the network packets associated with that event, including packets that led up to the event and those that were created immediately after. With today’s announcement, security professionals investigating a security breach with the HP ArcSight SIEM platform can add specific network packet data to their investigation – something previously unachievable for past events.
"Every cybersecurity threat comes in as packets over the network, so security professionals find packet-level forensics highly useful when investigating an incident," said Mandana Javaheri, Savvius CTO. "But storing network traffic for the weeks or months it typically takes to identify a breach requires impractical amounts of storage. Now, organizations using HP ArcSight can use Savvius Vigil to enhance their incident response capabilities with insight at a packet level."
For more information, please visit www.savvius.com.
About Savvius, Inc.
Savvius, Inc. (formerly WildPackets), a leader in network performance management and packet-level security forensics, enables network and security professionals to identify, understand, and respond to challenges in network performance and security. Savvius products are sold in more than 60 countries and deployed in all industrial sectors. Customers include Boeing, Chrysler, Fidelity, Motorola, Nationwide, and more than 80 percent of the Fortune 1000. Savvius is a Cisco Technical Development Partner (CTDP). For more information, visit www.savvius.com.
Media Contact:Michelle Dailey for Savvius