07 Mar Fortscale 2.5 – Streamlined Investigation, Email Subscriptions, & Reports
Last week was an exciting week for Fortscale because version 2.5 was officially released. I interviewed key members of the Fortscale team regarding the release, and I spoke with Inbar Ries, VP of Products about some of the significant new capabilities.
Bill: “Inbar, what new features of Fortscale version 2.5 do you find particularly compelling and interesting?”
Inbar: “Well 2.5 has a lot of important new capabilities, but let me start with streamlined investigations. Other user behavior solutions present the analyst with only the anomalies of a specific user. In Fortscale, we always present the abnormal behavior, but in addition we are also presenting the normal behavior so the analyst will understand why a particular alert or report has been generated.
“So, on each user’s profile page we are showing the user’s top source machine(s), their top target machines, the countries that they have visited, and information like that sFortscaleo the analyst will see immediately what the normal behavior is. Additionally, when looking at alerts the analyst will be able to see how the anomalous behavior is different than the user’s normal behavior. This really helps the security staff to see the full context of what’s going on and make rapid decisions regarding further action that may need to be taken.
“Powerful email forwarding is another important enhancement. Sometimes an analyst may be working in another area and not using Fortscale at the moment. With version 2.5, we are able to forward either single alerts or a summary of outstanding critical alerts to the analyst. This way he’s completely up to date. And this is not just for the analyst, but for the whole security team. If they would like to just get a summary of today’s most critical alerts they can get it immediately.
“Last but not least, Fortscale also comes with a great set of reports, which is one of our solution differentiators. In version 2.5 we’ve improved the user interface so it’s even easier to use, one again providing the analyst and their managers powerful tools to streamline investigations.
Bill: “Thank you Inbar. I know that today it can be very difficult to find good security analysts and managers. These new features are very important to leverage their skills because it’s hard to find them. And when we do find great talent, we need to make them as effective and productive as we can. These new features that streamline the investigation will really help in that area.
“Thank you Inbar, we appreciate you taking time to discuss these new features, and I know that Fortscale customers are really excited about the new version and these new features you’ve introduced.”
UPGRADE YOUR INSIDER THREAT SYSTEM WITH FORTSCALE 2.5
Good UEBA Investigation Tools Make Analyst’s Life Easier | Out of the Box UEBA for Protection of Additional Systems | Email Alert Subscriptions–New Fortscale 2.5 Feature