Digital Guardian Showcases Endpoint Threat Detection and Response at HP Protect 2014

Share Article

Digital Guardian interoperates with HP ArcSight to respond to advanced attacks in real-time.

News Image
Digital Guardian provides deep visibility of both insider and outsider threats unfolding on endpoint computers, which can be correlated with other security event streams in HP ArcSight to detect the most advanced attacks in real-time.

Digital Guardian, formerly Verdasys, the only security solution to protect data from insider and outsider threats with a single endpoint agent, is participating in HP Protect 2014 in Washington, D.C. The complete data protection and endpoint threat detection and response platform will be demonstrated at the Digital Guardian booth #203.

Digital Guardian provides deep visibility of both insider and outsider threats unfolding on endpoint computers, which can be correlated with other security event streams in HP ArcSight to detect the most advanced attacks in real-time. HP ArcSight operators can then respond immediately from the HP ArcSight console to block threats and quarantine endpoints using the Digital Guardian endpoint agent.

"Security teams struggle with increasing numbers of critical security events from network security systems. Many of these critical alerts get lost in the noise as organizations do not have the information at hand to prioritize these alerts correctly," said Doug Bailey, Chief Strategy Officer at Digital Guardian. "Digital Guardian has granular visibility of all process actions at the endpoint, including access to data, classification of the data and network activity. Digital Guardian correlates these discrete events at the endpoint in real time and passes resulting alerts to HP ArcSight."

When advanced malware is seen entering the network perimeter, security incident responders need to understand if the threat made it through other security layers and if so, which endpoints it landed on. Understanding which endpoints are infected is key to stopping the threat from propagating laterally and stealing sensitive data. Digital Guardian provides HP ArcSight with rich context to answer these questions through its Common Event Format (CEF) integration. Advanced threats can thus be validated and prioritized immediately in the HP ArcSight console.

When security specialists detect and prioritize threats in HP ArcSight, they are able to deploy endpoint response rules to Digital Guardian directly from the console using the HP ArcSight Action Connector for Digital Guardian. Security staff can deploy controls to block threats and quarantine endpoints, reducing incident response time from days or hours to minutes. Digital Guardian’s endpoint visibility and control provides HP ArcSight customers with strong Return on Security Investment through alert prioritization and immediate response.

About Digital Guardian
Digital Guardian offers security’s most technologically advanced endpoint agent. Only Digital Guardian ends data theft by protecting sensitive data from skilled insiders and persistent outside attackers. For over 10 years we’ve enabled data-rich organizations to protect their most valuable assets at the endpoint. Our unique contextual awareness, transformative endpoint visibility, and flexible controls let you minimize the risk of data loss without slowing the pace of business.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Cheri Keith
Digital Guardian
781-902-5649
Email >

Andrea LePain
Greenough
6172756526
Email >
Visit website