Home » SME » HP Protects the Digital Enterprise with New Security Analytics

HP Protects the Digital Enterprise with New Security Analytics

HP is unveiling new solutions cantered on security analytics and designed to help organizations shift from legacy security methods to a modern approach that focuses on protecting the interactions among users, applications and data to help protect enterprises’ most valuable assets.

With the growing volume and complexity of data, enterprises need an intelligent security platform that harnesses the power of   Security Information and Event Management (SIEM) capabilities for active monitoring, coupled with use-case driven security analytics that derive actionable intelligence. Companies receive an average of 17,000 malware alerts per week, and spend an average of $1.27 million annually in time and resources responding to inaccurate and erroneous threat intelligence. Due to the volume of data that enterprise security professionals must monitor, approximately four percent of all malware alerts are actually investigated, leaving a significant gap in security coverage. Additionally, traditional endpoint security solutions and manual intervention are not intercepting all critical malware infections, leaving organizations further exposed.

To help enterprises automate the analysis of threat data, HP is introducing HP DNS Malware Analytics (DMA), designed to identify infected hosts by inspecting an enterprise’s DNS traffic.

Developed in partnership with HP Labs, HP’s central research organization, and HP’s internal Cyber Defense Center, this clientless, algorithmic-driven service uncovers infected hosts without endpoint agents, helping customers to quickly detect high-risk threats, reduce data breach impact and enhance overall security posture.

“Organizations today are faced with growing volumes of security data and without the ability to separate the signal from the noise they can fall victim to undetected malware attacks, which can have serious financial and operational impact,” said Jyoti Prakash, Country Director, India and SAARC countries, HP Enterprise Security Products. “The new HP DNS Malware Analytics solution effectively puts the data science necessary to derive malware detection from voluminous DNS server events into a simple, highly efficient package for customers large and small, and when combined with the powerful HP ArcSight SIEM platform, provides next-generation SIEM capabilities to better protect the enterprise.”

HP DMA rapidly identifies malware-infected hosts such as servers, desktops and mobile devices so that they can be contained before gaining a foothold in the network. The solution uses an algorithmic engine – as opposed to the more common rules-based approach – to analyze the high volume of DNS records. This enables the detection of new, unknown malware while simultaneously reducing false positives by a factor of 20 over other malware detection systems. This saves valuable IT time and resources, enabling customers to prioritize and remediate based on the highest risk devices.

With simple set-up and cloud reporting, HP DMA can be rapidly deployed to offer continuous threat vigilance. The solution seamlessly integrates with the HP ArcSight SIEM platform, enabling customers to harness the power of SIEM and leverage their HP ArcSight Enterprise Security Management (ESM) deployments to correlate with other contextual data, issue alerts and signal appropriate remediation.

To further support HP’s focus on data-driven security, HP also introduced HP Fortify scan analytics, a   machine-learning technology that harnesses the power of an organization’s application security data to improve accuracy and efficiency of application security solutions. Processing an organization’s growing collection of historical application security scan results to reduce the number of issues that require an auditor’s review, the solution enables customers to focus resources on fewer, higher priority tasks. This analytics technology integrates seamlessly into existing application security testing workflows, which helps to increase both the efficiency of the application security audit process and the relevancy of findings.

The new HP DMA and Fortify scan analytics offerings bolster HP’s existing analytics capabilities announced earlier this year around user behaviour analytics. HP User Behavior Analytics (UBA) provides customers visibility into user behavior to detect malicious or negligent users, or external attacks that compromise user accounts across the enterprise. Ranking detected anomalies and the associated risk, HP UBA allows customers to focus efforts and resources on the activities, users and applications that pose the greatest risk to the enterprise.

HP Fortify scan analytics is currently available as part of HP Fortify on Demand.

HP User Behavior Analytics is currently available, with version 1.1 of the solution, UBA Premium, released on August 30, 2015.

Check Also

An online Special Vendor Development Programme (SVDP) for Micro & Small Enterprises (MSEs) was jointly organized by NTPC MSME Cell- CC&M and National SC-ST Hub (NSSH), NSIC, Okhla in New Delhi.

NTPC MSME cell organized Online Special Vendor Development Programmefor MSEs owned by Women and SC/ST entrepreneurs

An online Special Vendor Development Programme (SVDP) for Micro & Small Enterprises (MSEs) was jointly …

Do NOT follow this link or you will be banned from the site!