RSA expands capabilities of Security Analytics

RSA, the Security Division of EMC, has announced new capabilities have been added to RSA Security Analytics that are designed to help organizations extend protection of their infrastructure into the cloud.  RSA Security Analytics is engineered to give organizations the necessary context to help detect and respond to today’s advanced attack campaigns before they can damage the business. This release also is built to offer visibility into attacks that target critical customer-facing web and mobile applications, and introduces data privacy capabilities. In addition to extending the reach into the cloud, RSA Security Analytics is now being offered with new pricing and packaging options including throughput-based pricing that better aligns the investment to the scale of the customer deployment for better cost efficiency. In addition, customers will also be able to leverage their own storage investments.

While logs are a valuable piece of the puzzle, they’re limited by what the preventative controls they monitor can detect, and alone are not enough to identify advanced attacks. In fact, most successful attacks go undiscovered by logs alone. In addition, even when log-based Security Incident and Event Management (SIEM) systems are able to detect the faint signals of an attack, they are unable to piece them together to provide security analysts with the understanding to quickly respond to and disrupt the attack. Instead, they overwhelm analysts with alerts that lack the context needed to take action.

Grant Geyer, Senior Vice-President, Products, RSA, said, “As the threat landscape grows in complexity and more advanced attacks emerge, organizations can no longer rely solely on a log-centric approach to security. RSA Security Analytics is what SIEM was meant to be by giving enterprises the ability to detect attacks missed by other tools and respond before attackers can do damage. By integrating a wide range of inputs from packets, to logs, to endpoints, RSA Security Analytics exposes attacks that would otherwise go unnoticed.” See more