RSA, FireEye Partner in Threat Monitoring
RSA and FireEye are teaming to provide a new threat monitoring service, leveraging a combination of security analytics and threat detection capabilities garnered from both of their offerings. Among other things, the new service represents RSA's continued investment into the security analytics and monitoring space, which sets the stage for the channel to comfortably expand practices around threat monitoring and deep-dive security forensics.
Send to Kindle
Business analytics is all the rage. And in light of increasingly sophisticated and evasive threats, using newfound analytic capabilities to detect advanced malware is an increasingly sound channel investment.
To that end, FireEye Inc, and RSA, Inc., the security division of EMC Corp.,are teaming to launch an RSA NetWitness advanced threat network monitoring platform. The secret sauce? Reliance on analytics and advanced threat data from RSA's NetWitness and FireEye’s Malware Protection System, a combination that could give security solution providers a competitive edge with greater insights and speedier remediation.
Specifically, the joint offering leverages FireEye’s next generation security offerings to detect zero day attacks, targeted Advanced Persistent Threats and other advanced malware. Those capabilities are compounded with network analysis and visibility features gleaned from RSA’s acquisition of NetWitness in April of last year.
The combination then provides threat analytics and attack information that opens extended visibility into their customers’ networks. That added insight also includes historical data, such as previous network compromises and current cyber attack methods, which can be leveraged to ascertain predictive behaviors that offers clues into future attacks.
For partners, that added insight gives them a springboard from which to launch a host of related forensic, analysis and monitoring services. It also provides big leg up with customers struggling to retain control of pervasive, stealthy and increasingly sophisticated threats.
"Enterprises demand insight into the impact of cyber attacks as they occur,” said Brian Girardi, RSA senior director, product management. “The ability of our joint solutions to provide common customers with real-time, dynamic analysis of zero-day attacks, accurate incident scoping, and definitive answers, provides an extra benefit for customers looking to improve their security posture.”
Meanwhile, Massachusetts-based RSA first catapulted itself into the advanced threat detection and monitoring space with the acquisition of network analysis and visibility firm NetWitness in April of last year, which extended the security firm’s capabilities in the wake of the devastating SecureID breach the prior month.
However, it’s only been recently that the security firm has started to fully leverage, and integrate, its new palette of capabilities.
In July, RSA launched its FraudAction Anti-Rogue App service, delivered via a managed security service designed to provide a broader scope of visibility and contextualization into customers’ mobile threat environment. The mobile security tool came as an extension of the company’s relatively new monitoring services portfolio, which also includes anti-phishing and anti-fraud offerings.
It’s no doubt analytics is rapidly heating market. An IDG report estimated that business analytics software grew 14 percent in 2011 and will likely remain in strong demand, driven in part by “compliance, security, fraud detection and risk management,” among other things.
As such, it appears that RSA is laying the foundation to remain in the security analytics and threat monitoring space for the long haul.
For partners, that will undoubtedly mean expanded opportunities to build out deep-dive security forensics, analysis and threat monitoring practices, should they choose to stay in the game.