Verdasys Introduces Digital Guardian Action Connector for HP ArcSight at HP Protect 2013

Enables immediate containment of newly detected malware on the endpoint

  • Share on TwitterShare on FacebookShare on Google+Share on LinkedInEmail a friend
"...React to the threats HP ArcSight has discovered using a comprehensive set of endpoint controls that stop malware and secure intellectual property."

Washington, D.C. (PRWEB) September 17, 2013

Verdasys today announced the HP ArcSight Action Connector for Digital Guardian, enabling Digital Guardian controls on host systems from the HP ArcSight console to validate, contain and prevent malware threats uncovered by the HP ArcSight (Security Information and Event Management (SIEM) platform. The new Action Connector recently received HP ArcSight Action Connector Certification and will be demonstrated this week at HP’s annual enterprise security conference, HP Protect, being held in Washington, D.C. Sept. 16-19.

The Digital Guardian Action Connector for HP ArcSight expands on existing integration between the HP ArcSight platform and Digital Guardian by allowing HP ArcSight to initiate a range of endpoint controls through Digital Guardian to contain malware and lock down sensitive data on infected machines, as well as prevent further malware infections. Through the Action Connector, Digital Guardian accepts Indicators of Compromise (IOCs) from HP ArcSight, using them to automatically create endpoint rules to validate and contain existing infections and prevent further infections in real time.

"Many of our customers use HP ArcSight to correlate disparate events in their environments to uncover threats. Now with the HP ArcSight Action Connector for Digital Guardian, our customers are able to react to the threats HP ArcSight has discovered using a comprehensive set of endpoint controls that stop malware and secure intellectual property," said Verdasys CEO Jim Ricotta.

As a showcase to this new functionality, HP ArcSight customers using the FireEye Malware Detection System can now send IOCs to Digital Guardian directly from the HP ArcSight console to investigate and act upon threats uncovered in FireEye. With this capability, customers that aggregate security events in HP ArcSight can investigate the extent of an incident uncovered in FireEye and track its containment by Digital Guardian. Additionally, they can recognize advanced threats by correlating FireEye events from the network with Digital Guardian events from the endpoint using the HP ArcSight "single pane of glass" management console. The HP ArcSight Action Connector for Digital Guardian streamlines investigations and reduces time to containment by communicating new IOCs uncovered from correlation rules or by a security analyst to Digital Guardian for automatic creation of prevention, detection and containment rules.

Digital Guardian is a scalable platform for protecting intellectual property and other sensitive data against insider and malware threats on endpoints, utilizing agents to classify data and provide deep visibility and control over user and advanced malware activities on the endpoint. Unlike anti-virus solutions -- which use a signature-based approach and can only recognize known malware threats -- Digital Guardian is able to recognize and contain previously unknown malware based on behavior at the endpoint as it unfolds in real-time.

The new Action Connector builds on Verdasys’ existing HP ArcSight Common Event Format (CEF) certification. Digital Guardian provides a rich event stream in CEF format to HP ArcSight from host systems, including physical and virtual laptops, desktops and servers, which make visible user and malware activities, such as sensitive data access and system activity on endpoint computers.

The Digital Guardian Action Connector for HP ArcSight is available at: https://www.verdasys.com/resources/

About Verdasys
Verdasys (http://www.verdasys.com) provides Enterprise Information Protection solutions and managed services to secure sensitive data and assure the integrity of business processes, enabling midsize and global businesses to successfully compete in collaborative and mobile environments. Digital Guardian, a Leader in Gartner’s 2012 Magic Quadrant for Content-Aware Data Loss Prevention, is a proven technology platform that provides complete, policy-based data lifecycle monitoring, classification, forensics and control on endpoints and servers, virtual machines and enterprise applications, networks, mobile devices and cloud environments. Digital Guardian protects IP and regulated data from compromise by insiders, contractors, partners and targeted cyber attacks. Since 2003, millions of Digital Guardian agents have been deployed to protect critical data for global leaders in financial services, insurance, technology, manufacturing and healthcare industries.

# # #

Contact: Betsy Kosheff, 413-232-7057 (bkosheff(at)verdasys(dot)com)


Contact

Follow us on: Contact's Facebook Contact's Twitter Contact's LinkedIn

Attachments

Past News Releases Group Rss Subscribe