It’s Not If, It’s When
Sooner or later, the bad guys will beat your security defenses. They will introduce advanced malware into your network, which can spread indiscriminately, or a trusted employee or third party could simply walk out with data on a thumb drive. Either way, without network security analytics, you are blind to these types of security breaches.
Detect, Investigate, Respond
SteelCentral NetProfiler Advanced Security Module transforms network data into cybersecurity intelligence, providing essential visibility and forensics for broad threat detection, investigation, and mitigation.
Using full-fidelity network flow analytics, which captures and stores all the data you need for forensic analysis, it delivers the crucial insights and empirical evidence to detect and investigate advanced persistent threats that bypass typical preventative measures as well as those that originate inside the network. With the Advanced Security Module, you can accurately assess the severity and scope of security incidents and quickly initiate mitigation actions to reduce the likelihood that attackers get the data they want.
Threat Detection
Built with security operations teams in mind, this new software module for SteelCentral NetProfiler provides the following rich threat detection capabilities in a single, easy-to-use solution:
- Threat Intelligence – alerts when your system communicates with blacklisted communications (known malware download sites, command & control sites, etc.) so you investigate and take action quickly.
- Distributed Denial of Service (DDoS) detection – quickly and accurately identifies a broad range of DDoS attacks so you can make informed mitigation decisions to end interruptions sooner.
- Network security analytics – baselines traffic and automatically identifies threats that generate unusual patterns, such as unexpected new services, hosts, or connections.
- Cyber Threat Hunting – proactively search for hidden security threats on your network before they become business-impacting events!
- Incident forensics – provides full historical details so you get the complete scope of the attack; drill into the packets for even more details.
Security Integrations
DDoS detection requires fast mitigation, therefore the NetProfiler Advance Security Module offers out-of-the-box integrations with
- A10 Networks Thunder TPS™ to mitigate up to terabit DDoS attacks at the network edge
- Neustar SiteProtect NG provides 11.8+ Tbps of DDoS mitigation - the largest dedicated data scrubbing network in the world
- Verisign CloudSign, a cloud-based mitigation system that provides comprehensive protection against network- and application-layer DDoS attacks
Additionally, integrate with your favorite SIEM/syslog vendors:
- SIEM/Syslogs – Send your network security analytics events to your SIEMs such as Splunk, ArcSight, QRadar, etc. to correlate syslog events with your network-based threats
VIEW MORE VIEW LESS