Problems

The incredible amounts of data that pass through the network and the limited time that any “security appliance,” like a firewall or IDS, has to inspect the traffic poses a significant challenge. In addition, many security professionals, unskilled in dealing with network packet data or protocols, find key data difficult to find and understand because it’s not presented in a simple and intelligible fashion.

What does packet data tell me about an alert/intrusion/breach?

What does packet data tell me about an alert/intrusion/breach?

What is the role of network data in reducing my enterprise risk?

What is the role of network data in reducing my enterprise risk?

What is the truth? What really happened? Who/What/When/Where?

What is the truth? What really happened? Who/What/When/Where?

Solution

Network Security Analytics is a set of tools, technologies and methodologies broadly defined as applying the data science techniques of statistical analysis and pattern detection to network security risk management. Its promise is to replace the highly manual effort involved in defining and managing security risk with a more precisely targeted but automated way of achieving better protection with lower and less expensive manpower utilization.

Savvius Vigil automates the collection of network traffic needed for security investigations, both reducing the likelihood of a breach, and minimizing the impact should one occur. Even breaches not discovered for months can be effectively investigated using Savvius Vigil. Vigil lets your organization conduct powerful forensic investigations by extending breach visibility and integrating with key security systems. You can intelligently capture critical packet data before and after an attack occurs so your organization can gain a clear and accurate picture of the damage, and react quickly.