NetCitadel Develops New Approach for Real-Time Security Incident Response to Advanced Persistent Threats and Malware Attacks
MOUNTAIN VIEW, CA - NetCitadel, Inc., the pioneer in innovative threat management solutions, today announced a new analytics-driven, context aware approach for protecting enterprise networks from increasingly sophisticated security attacks and Advanced Persistent Threats (APT).
The evolution and increased frequency of malware and APTs has reduced the effectiveness of traditional threat detection and enforcement solutions. With nearly 200,000 new malware samples appearing each day 1, new detection solutions have emerged to detect the new attacks, producing more threat events than can be evaluated or managed in a timely fashion. To make matters worse, most organizations have only a handful of highly trained security analysts who are tasked with manually executing the all-important steps of investigating, verifying, prioritizing, and containing the detected threats. The result is that the gap between detection and response is getting wider.
NetCitadel is developing the first threat management platform of its kind, one that addresses the security analysis and intelligence needs of today's incident response teams. This analytics-driven approach uniquely adds rich context data to events generated by threat detection devices such as Advanced Malware Detection (AMD) systems and Security Incident and Event Management (SIEM) solutions to facilitate rapid and intelligent decisions. In addition, NetCitadel's solution integrates with existing security devices, such as firewalls and web proxies, to deliver real-time responses to security events.
"We have a rich mix of threat detection solutions to identify potential security events as they happen, but we quickly discovered that visibility was only half the battle," said Kevin Moore, Director of Information Technology at Fenwick & West LLP. "Once an event has been detected, our team still has to spend precious time researching, verifying and prioritizing events before we can start responding to the threat. NetCitaDel Closes the gap between threat detection and rapid response by providing our team with deep contextual data for each incident, as well as supporting a variety of network enforcement options. It's our Incident Response analyst 'in a box.'"