HP Forays Into Security Analytics Market

by CXOtoday News Desk    Sep 10, 2015

security

HP has unveiled new solutions centred on security analytics and designed to help enterprises shift from legacy security methods to a modern approach that focuses on protecting the interactions among users, applications and data to help protect enterprises’ most valuable assets.

According to the tech giant, organizations are inundated with security data on a daily basis and face the challenge of translating this data into meaningful insights to proactively manage threats that pose legitimate risk.

With the growing volume and complexity of data, an intelligent security platform is critical - one that harnesses the power of world-class Security Information and Event Management (SIEM) capabilities for active monitoring with use-case driven security analytics that derive actionable intelligence.

“Breach detection is top of mind for security buyers and the field of security technologies claiming to find breaches or detect advanced attacks is at an all-time noise level,” says Eric Ahlm, research director, Gartner.

“Security analytics platforms endeavour to bring situational awareness to security events by gathering and analysing a broader set of data, such that the events that pose the greatest harm to an organization are found and prioritised with greater accuracy,” Ahlm states.

Organizations receive an average of 17,000 malware alerts per week, and spend an average of $1.27 million annually in time and resources responding to inaccurate and erroneous threat intelligence.

Due to the volume of data that enterprise security professionals must monitor, approximately four percent of all malware alerts are actually investigated, leaving a significant gap in security coverage.

Additionally, traditional endpoint security solutions and manual intervention are not intercepting all critical malware infections, leaving organisations further exposed.

To help organisations automate the analysis of threat data, HP is introducing HP DNS Malware Analytics (DMA), a unique solution designed to identify infected hosts by inspecting an enterprise’s DNS traffic.

Developed in partnership with HP Labs, HP’s central research organisation, and HP’s internal Cyber Defence Centre, this client-less, algorithmic-driven service uncovers infected hosts without endpoint agents, helping customers to quickly detect high-risk threats, reduce data breach impact and enhance overall security posture.

Organizations receive an average of 17,000 malware alerts per week, and spend an average of $1.27 million annually in time and resources responding to inaccurate and erroneous threat intelligence. Due to the volume of data that enterprise security professionals must monitor, approximately four percent of all malware alerts are actually investigated2, leaving a significant gap in security coverage. Additionally, traditional endpoint security solutions and manual intervention are not intercepting all critical malware infections, leaving organizations further exposed.

“Organizations today are faced with growing volumes of security data and without the ability to separate the signal from the noise they can fall victim to undetected malware attacks, which can have serious financial and operational impact,” said Jyoti Prakash, Country Director, India and SAARC countries, HP Enterprise Security Products.

“The new HP DNS Malware Analytics solution effectively puts the data science necessary to derive malware detection from voluminous DNS server events into a simple, highly efficient package for customers large and small, and when combined with the powerful HP ArcSight SIEM platform, provides next-generation SIEM capabilities to better protect the enterprise,” states Prakash.