RSA has enhanced its NetWitness Live platform to provide more threat content, customised content distribution capabilities and new integration with its analytics platforms.
As its industry-wide conference begins today in San Francisco, the company announced that its cloud-based, 24/7 threat intelligence delivery platform, which is engineered to aggregate, analyse and spotlight the most relevant security content from 100 trusted sources, now provides 30 per cent more threat content, with data sources from RSA's CyberCrime Intelligence service and eFraudNetwork added, as well as intelligence feeds from Bit9 and ThreatGRID integrated.
The company has also added customised content distribution capabilities and integration with its analytics platforms, with the RSA NetWitness for Logs platform and the RSA NetWitness Spectrum malware detection platform enabling security teams to stream relevant NetWitness Live content directly; the analytics platforms are designed to automatically ingest the data to enhance the precision of their threat detection results.
Amit Yoran, senior vice-president and general manager of RSA's security management and compliance division, said threat intelligence and related information must be shared faster than ever to defeat today's cyber adversaries, whose attacks have become increasingly sophisticated and customised.
“NetWitness Live has been instrumental to our customers in detecting and defeating advanced threats. By tapping into the collective intelligence and analytical skills of the global security community, the service helps organisations significantly enhance their situational awareness and shorten their time to respond to potential threats,” he said.
“The latest enhancements and integrations extend our capabilities in real-time security analytics and advanced threat detection to give organisations more timely and constructive visibility into potential attack vectors.”
Additions include a central management console to tailor content sources based on an organisation's unique environment and threat profile or to add network monitoring feeds and optimise content flow, as well the ability to engineer NetWitness Live Manager content profiles to allow security analysts to focus on the task of protecting network assets by reducing the time and effort normally required to effectively manage content.