Lancope NetFlow-Based Monitoring Connects to HP ArcSight Platform for Enhanced Network Visibility and Situational Awareness
Share:
Lancope's StealthWatch System is now ArcSight Certified CEF Compliant, helping organizations better combat advanced persistent threats
ATLANTA,-- HP Protect 2011 -- Lancope, Inc., a leader in flow-based security, network and application performance monitoring, has announced that its StealthWatch® System is now ArcSight Certified Common Event Format (CEF) Compliant, and is certified to work with the HP ArcSight Enterprise Threat and Risk Management platform. Through this interoperability, customers can obtain enhanced network visibility and situational awareness for combating the full spectrum of attacks, including advanced persistent threats (APTs), targeting today's enterprises.
Security information and event management (SIEM) tools like the HP ArcSight solution provide key insight into security events that take place across the entire organization. Lancope's StealthWatch System delivers complete, real-time visibility into all hosts and traffic on the network to address a wide variety of network and security issues.
Customers will now be able to stream flow-based event data from StealthWatch into their HP ArcSight deployments and correlate it with data from other sources to obtain valuable contextual awareness surrounding specific security events. In addition to helping organizations better detect and thwart even the most sophisticated attacks, StealthWatch strengthens overall security posture, enhances network forensics for incident investigation, and supports compliance with industry regulations such as PCI and HIPAA.
"Today's dynamic technology environment requires a defense-in-depth strategy to comprehensively protect organizations from advanced persistent threats and other sophisticated attacks," said Joe Yeager, director of product management for Lancope. "By augmenting traditional sources of SIEM data with flow-based information from StealthWatch, administrators can see deeper into the network and obtain a more complete picture of network activity. This greatly reduces the cost and complexity of incident resolution and vastly improves security operations."
StealthWatch applies powerful, behavioral analytics to NetFlow and other flow data from existing network devices to uncover not only the zero-day attacks that bypass perimeter defenses, but also internal threats. The system eliminates network blind spots, cuts network and security management costs and dramatically expedites troubleshooting across physical and virtual environments. StealthWatch enables IT teams to quickly pinpoint the root cause of issues all the way down to the exact application and user.
In addition to providing in-depth intelligence on the internal network, StealthWatch can also conduct behavioral analytics on data from perimeter devices such as firewalls, delivering even greater situational awareness. The system also provides functionality for automated threat prioritization and mitigation for more effective troubleshooting. StealthWatch is scalable to meet the needs of even the largest networks, analyzing up to 3 million flows per second.
"Providing comprehensive network visibility, Lancope's StealthWatch is a valuable addition to our data sources, delivering in-depth intelligence to help organizations better respond to the full range of security issues affecting their networks, including advanced cyberattacks," said Dan Barahona, vice president of Business Development, HP ArcSight.
Lancope is currently exhibiting the StealthWatch System at Booth #13 at HP Protect 2011 in Washington, D.C. Further details on StealthWatch can be found at www.lancope.com/products.
About Lancope
Lancope®, Inc. is a leading provider of flow-based monitoring solutions to ensure high-performing and secure networks for global enterprises. Unifying critical network performance and security information for borderless network visibility, Lancope provides actionable insight that reduces the time between problem identification and resolution. Enterprise customers worldwide, including healthcare, financial services, government and higher education institutions, rely on Lancope to make better network decisions, respond faster to network problem areas and avoid costly outages and downtime - at a fraction of the cost of conventional network monitoring solutions. With Lancope, you can know your network and run your business better. Privately held and venture-backed, Lancope is headquartered in Atlanta, Georgia. For more information, visit www.lancope.com.
©2011 Lancope, Inc. All rights reserved. Lancope, StealthWatch, and other trademarks are registered or unregistered trademarks of Lancope, Inc. All other trademarks are properties of their respective owners.
SOURCE Lancope, Inc.
CONTACT: Jody Ma Kissling, +1-770-225-6513, jma@lancope.com, or Bill Keeler and Lesley Sullivan, Schwartz Communications, +1-781-684-0770, lancope@schwartzcomm.com
Web Site: www.lancope.com
