Savvius Blog

The Savvius Network Analysis and Monitoring Blog covers enterprise networking news from recent standards, such as 802.11n, and upcoming technologies, such as 100G, to pressing everyday issues around wireless, VoIP, security, and network performance management.

Automation is the key to better enterprise security

Our Director of Products, Jay Botelho, believes in the importance of automating aspects of network data collection to help security analysts find and resolve issues faster. He discusses this in more detail in an ITProPortal (UK) article.

You can find the full article here, but here’s an excerpt:

People are no longer surprised by data breaches. Many breaches are perpetrated by malicious actors. Others are the result of lapses in internal security protocols. The one common thread today is that every organization, whether it is a retailer, a healthcare provider, a financial institution or a government agency, is becoming more dependent on the network and its data. The traffic flowing across the network is what keeps the organization in business, so the data has enormous intrinsic value to the enterprise. Although breaches at companies like Yahoo have garnered a lot of attention recently, the sophisticated and automated tools used by hackers put every company, regardless of size, at serious risk of being hacked.

A primary reason for this weakness is that the volume of alerts has become so overwhelming that security teams typically only have the bandwidth to investigate a small percentage of the highest priority alerts each day. It’s very easy to find the bottleneck in this process; current security solutions typically require a disjointed, multi-step process that forces security analysts to manually correlate aggregated data from alerts with the corresponding network logs or traffic. Picture multiple screens and a lot of manual cross-checking, which is certainly not ideal when time is such a valuable commodity.

The key to improving security alert fatigue is automation.

 The security industry sorely needs automated tools and processes that work in the background to collect suspicious network traffic, making it readily available to analysts whenever needed. By centralizing and automating much of this process, analysts have much more time to investigate alerts each day, which in turn greatly increases the likelihood that they will find and limit the impact of a breach.

 

Screen Shot 2016-03-16 at 11.24.35 AM

Jay Botelho, Director of Products at Savvius

facebooktwitterlinkedinfacebooktwitterlinkedin

Savvius Earns Two Global Excellence Awards

InfoSec_Global_Excellence_2017_Innovative_Solution_Award_Silver         InfoSec_Global_Excellence_2017_Innovative_Company_Award

Savvius continues to receive prestigious industry accolades, earning two honors in the recent 13th Annual 2017 Info Security Product Guide’s Global Excellence Awards®.

Going up against stiff competition, Savvius earned the gold title in the “Innovative Company of the Year” category for companies with security products. This award showcases how rapidly Savvius has been able to parlay its strengths in network troubleshooting and diagnostics, into a leadership position in the network forensics space.

In addition, Savvius Omnipeek was nominated in the “Most Innovative Security Software of the Year” category, where it earned a well-deserved silver award.

Omnipeek, the best-in-class network analytics and performance diagnostics solution, dramatically streamlines the process of network troubleshooting and forensics. It now gives users the ability to manage packet analysis through a single, streamlined user interface that includes security alerts from popular open-source IDS platforms such as Snort and Suricata. By highlighting packet data corresponding to these alerts, Omnipeek provides immediate, detailed analysis of suspected breaches. Omnipeek is also able to open multiple large capture files simultaneously by filtering the packet files before they are loaded and analyzed. This greatly reduces file size and helps to speed up response times.

Julie Criscenti Heck, the Head of Marketing at Savvius, commented on the awards, saying, “It’s rewarding to see that our depth of hands-on experience in the network space is finding such critical success in the security space, too. So many of our customers love our network diagnostics tools, like Omnipliance and Omnipeek, and these awards validate our belief that access to packet data is at the heart of resolving both network and security issues.”

For a no-obligation 30-day trial of Omnipeek, go to: https://www.savvius.com/distributed_network_analysis_suite_trial

facebooktwitterlinkedinfacebooktwitterlinkedin

Contact Us Savvius Blog Follow Savvius on Twitter Like Savvius on Facebook Follow Savvius on LinkedIn Follow Savvius on YouTube Follow Savvius on Slideshare