High-speed Solutions

The WildPackets Network Analysis and Monitoring Blog covers enterprise networking news from recent standards, such as 802.11n, and upcoming technologies, such as 100G, to pressing everyday issues around wireless, VoIP, security, and network performance management.

Savvius Omnipeek Earns 2017 “Most Innovative Forensics Solution”

We have some exciting news from last week’s RSA Conference. Cyber Defense Magazine (CDM), a leading InfoSec publication, announced that Savvius Omnipeek beat out a host of rival products to be named the Most Innovative Forensics Solution of 2017.

Describing the significance of this award, the Editor-in-Chief of Cyber Defense Magazine, Pierluigi Paganini, said, “We’re thrilled to recognize next-generation innovation in the information security marketplace and that’s why Savvius has earned this award from Cyber Defense Magazine. Some of the best InfoSec defenses come from these kinds of forward thinking players who think outside of the box.”

Omnipeek, which has an established reputation as a best-in-class network analytics and performance diagnostics solution, dramatically streamlines the process for both network troubleshooting and security investigations. Omnipeek now gives users the ability to manage packet analysis through a single, streamlined user interface that includes security alerts from popular open-source IDS platforms such as Snort and Suricata. By highlighting packet data corresponding to these alerts, Omnipeek provides immediate, detailed analysis of suspected breaches. Omnipeek is also able to open multiple large capture files simultaneously by filtering the packet files before they are loaded and analyzed. This greatly reduces file size and helps to speed up response times.

Julie Criscenti Heck, the Head of Marketing at Savvius, was on hand at Savvius’ RSA booth to receive the award, and said, “We’re seeing significant interest in network forensics as an effective source of truth in security investigations. Savvius is honored to have Omnipeek recognized with an InfoSec Award from this well-respected publication.”

For a no-obligation 30-day trial of Omnipeek, go to: https://www.savvius.com/distributed_network_analysis_suite_trial

Omnipeek Award

facebooktwitterlinkedinfacebooktwitterlinkedin

Savvius 2017 Security Predictions

With 2017 right around the corner, we have a few predictions for what may take place in the security domain next year.

Staying ahead of the curve

As we mentioned in our networking predictions blog post, 2017 will be a year in which solution vendors come under increasing pressure to integrate products into standardized work flows while providing unique value-add features that address cyber threats. At Savvius we achieve this balance by adhering to commonly accepted industry standards and by not trying to reinvent the wheel where technologies are readily available in the market. At the same time, we are able to complement the industry by applying our expertise in packet analytics and automated data collection to provide industry-leading troubleshooting and security capabilities that result in rapid resolution of network and security investigations.

Unlike the networking industry, which is already quite mature and facing considerable pressure to consolidate, the security space is still a veritable Wild West of competing technologies and approaches. One thing is certain. 2017 breaches resulting in the exfiltration of sensitive data will continue to rise. As an active participant in the security industry, Savvius will continue to play its role helping companies prepare for a breach and minimize its impact.

2017 Security Predictions

  1. Security teams will turn to network engineers for the truth contained in packet data as metadata and log data are increasingly compromised. At the same time, security analytics based on network data will become the “hot” topic for presentations at security conventions.
  1. Sophisticated, state-sponsored security breaches will continue to increase. These adversaries are becoming more adept at bypassing traditional security measures, so as the number of breaches rises, network engineers will increasingly find themselves being called upon to help security investigations. They will need to provide critical network packet data that efficiently answers the who, what, when and how of the intrusion – even weeks or months after being discovered.
  1. Security stack complexity will continue to increase even more rapidly than attack surfaces, greatly increasing the tension between doing business (having low-friction systems and processes) and being in business (avoiding major security incidents), making it vital that enterprises have the capability to conduct rapid, accurate investigations into security incidents.
  1. Security teams will be increasingly inundated by incidents requiring investigation. The only solution is to automate the routine parts of their workflow to help speed up the analysis process. Smart hackers find ways to disguise attacks as low-priority issues making quantity of investigations as important as quality. Automating data collection and alert correlation techniques will help these teams analyze alerts as they come in so that low-level alerts don’t fly under the radar and go unchecked. With adequate automation technology in place, security analysts can expect up to a five-fold increase in the number of alerts that can be checked by the same manpower.
  1. Security teams will see their budgets increase, but demands on their time and expertise will increase even more. The choice is between tolerating increased risk or increasing the efficiency of the security team through automation and machine intelligence.

Check out our 2017 predictions for the network space here.

facebooktwitterlinkedinfacebooktwitterlinkedin

Contact Us Savvius Blog Follow Savvius on Twitter Like Savvius on Facebook Follow Savvius on LinkedIn Follow Savvius on YouTube Follow Savvius on Slideshare