Given the nature of today’s advanced and targeted cyber attacks, as well as sophisticated malicious insiders, the most acute security challenge facing enterprises today is producing actionable User Intelligence. Tools are required for making sense of the massive amounts of data in each enterprise, generating intelligence about user behavior and prioritizing high-risk threats.

  • Translate the mountains of data collected by disparate systems into intelligence that can be used to discover potential threats.
  • Crunch the data and automatically prioritize thousands of events and logs using advanced analytics that can pinpoint under the radar attacks with no predefined rules, heuristics or thresholds.
  • Monitor security events on an ongoing basis, together with complex and automatic analyses designed to quickly identify and visualize threats.
 

Automated big data analytics tools enable organizations to transform their endless data sources into actionable intelligence that improves their ability to defend themselves from targeted attacks and cyber criminals in real-time. In addition, these tools allow more effective investigation analysis in order to discover the entire attack path. This can reveal, for instance, how the adversary infiltrated the network, how it gained access to the most sensitive file systems, how data is being exfiltrated from a particular database, or whether the insider threat is still covertly active.

 

Fortscale 1.0, an Hadoop based advanced security analytics solution, gives security analysts an effective toolbox to gain intelligence about malicious or rogue users, to pinpoint high-risk user behavior and access activity, to discover advanced attacks and to investigate potential security threats. It leverages the enterprise’s existing security measures and SIEM/SOC and enriches them with new insights and investigation capabilities.