RSA, a global cyber security leader delivering Business-Driven Security solutions, unveiled the next release of RSA NetWitness Suite that is designed both to increase productivity for security analysts of every skill and experience level and to accelerate threat detection and response. By integrating business context with true end-to-end visibility, the RSA NetWitness evolved SIEM is engineered to immediately identify an organization's high-risk security threats, optimises security processes to reduce attacker dwell time, and prioritizes the threats that matter most to the business.
The RSA NetWitness SIEM is designed to bring together log, network and endpoint data with business insights and threat intelligence into one, non-siloed analytics engine to find attacks that could otherwise go undetected. The Suite also features new User Interfaces (UI) built to help analysts respond to attacks that have the greatest potential to do the most harm to an organization. The end-to-end visibility and use of data in one SIEM to detect and respond separates RSA NetWitness Suite from other solutions in the market.
Today's risk landscape is a result of the increasing length and frequency of modern cyber attacks, and the dissolution of the traditional enterprise perimeter. Because attacks and vulnerabilities can strike anywhere and anytime, businesses can no longer rely on simple preventative measures and perimeter-based controls. Organizations must prepare for continuous attacks from advanced persistent threats by ensuring they have deep and wide visibility across their infrastructure, the right tools, skills, and business-risk assessment to prioritize threats and defend their network. However, due to the shortage of skilled analysts, security operations teams are spread thin. They are often unable to keep up with the exploding number of alerts and struggle to correlate data from disparate sources to understand the full scope of an attack. It is time for the centerpiece of the security operation center to evolve, for SIEM to live up to its promise of detection and responding to threats – not just provide compliance.
The new release of RSA NetWitness Suite is engineered to deliver visibility across the enterprise – from the endpoint to the cloud – in a new, highly intuitive UI that presents security analysts with a comprehensive view of the IT infrastructure, across logs, packets, endpoints, NetFlow and threat intelligence. This broad data set is designed to be made intelligent and actionable to limit false positives and the system noise with which most SIEMs are associated.
The Suite is built to use behavioral analytics and machine learning to automate the correlation of massive volumes of disparate data to help alleviate the workloads of today's security teams. By prioritizing incidents, orchestrating workflows, and providing the context in the midst of an investigation, RSA NetWitness Suite is designed to allow security analysts to more effectively investigate the full scope of an attack, triage, and respond to the threats that could do the most harm to an organization.
"Security teams struggle with understanding the business context necessary to focus on the threats that matter most to the business," said Mike Adler, Vice President of Product, RSA NetWitness Suite. "Our new, evolved SIEM is engineered to provide organizations with a Business-Driven Security strategy by interweaving business context and risk with the most advanced visibility and cyber security capabilities to help the entire organization – from the CEO and CISO to the security operations center – protect itself from known and unknown threats, minimize attacker dwell time and mitigate negative business consequences."
Subscribe to our newsletter for all the latest updates and special offers.
Click Here To view archive additions