The ability to analyze and correlate massive amounts of ‘big data’ is the Rosetta stone for unlocking advanced pattern detection and providing actionable insight into APTs
Addison, Texas (PRWEB) May 30, 2012
Global DataGuard® and EventTracker by Prism Microsystems® are hosting an informative webinar on today’s threat landscape, detailing how ‘big data’ analysis and correlation is changing the way in which security professionals are now able to detect and prevent complex, evolving attacks that often span days, weeks, months and even years. The webinar, ‘Threatscape 2012: Finding Advanced Persistent Threats with Big Data Analysis and Correlation,’ will be held on Thursday, June 7, 2012 at 10:00 a.m. CST. A.N. Ananth, CEO of Prism Microsystems, and Scott Paly, CEO of Global DataGuard, will outline how these breaches – often referred to as advanced persistent threats (APTs) – are able to go undetected for very long periods of time and how, with the right tools, security professionals can utilize ‘big data’ to more quickly uncover highly sophisticated attacks. This webinar is ideal for Security Professionals responsible for regulatory compliance, risk management, and/or technology investments. Register now.
In a March 2012 research brief on ‘Information Security Is Becoming a Big Data Analytics Problem,’ Gartner analyst Neil MacDonald defines ‘Big Data’ as “the practices and technology used to pursue emerging and divergent pattern detection as well as enhance the use of previously disconnected information assets.” MacDonald also asserts that there are multiple factors that warrant the adoption of big data analytics, including:
- The ability to successfully detect advanced targeted attacks, like APTs, by linking and analyzing large amounts of data to pinpoint meaningful anomalous behavior.
- The shift to context-aware security (such as time of day and location, as well as application, identity and content awareness) to improve the ability of big data analytics to discern meaningful patterns.
- The need to deliver risk-based security intelligence by distilling down vast amounts of data into prioritized, actionable insight or alerts.
Because APTs are carried out patiently, over time, by sophisticated cyber-thieves who maneuver around firewalls and anti-virus software in order to steal valuable or highly sensitive data, obtaining actionable information that identifies when an APT is attacking a company’s network is difficult, but not impossible.
Global DataGuard and EventTracker agree that the ability to analyze and correlate massive amounts of ‘big data’ is the Rosetta stone for unlocking advanced pattern detection and providing actionable insight into APTs. “An advanced architecture-based behavioral system that can sort through and continuously analyze and correlate massive amounts of data each day – including raw network traffic, discrete security events, IDS alerts, scans, logs, and SIEM alerts and policy violations – is crucial to delivering risk-based security intelligence,” stated Scott Paly, CEO and co-founder of Global DataGuard. “It provides for actionable alerts that can be prioritized by hostility, and it enables IT personnel to effectively manage, monitor, analyze, identify, and respond to security threats that other products may not detect, including APTs.”
EventTracker by Prism Microsystems delivers business critical solutions that transform high-volume cryptic log data into actionable, prioritized intelligence that will fundamentally change your perception of the utility, value, and organizational potential inherent in log files. EventTracker’s leading solutions offer Security Information and Event Management (SIEM), real-time Log Management, and powerful Change and Configuration Management to optimize IT operations, detect and deter costly security breaches, and comply with multiple regulatory mandates. Visit http://www.eventtracker.com for more information. Follow us on Twitter @logtalk.
About Global DataGuard, Inc.
Global DataGuard is the technology leader in network behavior analysis-based Unified Enterprise Security™ and Unified Enterprise Cloud Security™ for small-to-medium businesses up to large enterprise environments. The company has been arming Fortune 1000 companies with battle-tested, proven unified security solutions and Security Risk Management (SRM) Managed Security Services™ since 2001. Today, Global DataGuard unified security solutions for on-premise, virtualized and cloud/on-premise network environments are deployed on three continents in both corporate and managed services environments. For more information, visit the Global DataGuard web site at http://www.globaldataguard.com or follow us on Twitter @GlobalDataGuard.
For Prism Microsystems: Emily Strotman - 443-539-3773 - estrotman(at)eventtracker(dot)com
For Global DataGuard: Betty Eagan - 210-651-3430 - beagan(at)globaldataguard(dot)com
Global DataGuard is a registered trademark of Global DataGuard, Inc. Other company, product or service names mentioned herein may be trademarks or service marks of their respective companies.