SYS-CON MEDIA Authors: Zakia Bouachraoui, Elizabeth White, Liz McMillan, William Schmarzo, Dana Gardner

News Feed Item

Seceon Simplifies Security Information And Event Management With aiSIEM™

Next-level SIEM Automates Threat Detection and Remediation; Provides Comprehensive Visibility and Continuous Compliance Monitoring and Reporting

WESTFORD, Mass., April 16, 2018 /PRNewswire/ -- Seceon, the only threat detection and management company to visualize, detect, and eliminate cyber threats in real-time, today introduces aiSIEM™, a modern adaptation to security information and event management (SIEM). Seceon's aiSIEM extends traditional SIEM capabilities, providing enterprise and service provider organizations with continuous data analytics for ongoing assessment of security posture and compliance, offering adaptive access, predicting and anticipating threats and responding to verified threats in real-time. Seceon's capabilities were also recognized today by CyberDefense Magazine, who named the company a 2018 Infosec Award winner for Security Company of the Year and Machine Learning and Artificial Intelligence.

Seceon Logo (PRNewsfoto/Seceon)

"Faced with ongoing skill, resource and security infrastructure challenges, today's enterprise struggles to find a threat detection and response platform that can bring a comprehensive view of the organization—spanning many locations, hybrid cloud and third-party partner access—as well as the highly skilled security experts capable of managing them," said Chandra Pandey, Founder and CEO of Seceon. "Developed from the ground up to deliver comprehensive cybersecurity for the digital era, the Seceon aiSIEM platform brings real-time automation and simplicity to the traditional SIEM approach. By collecting, ingesting and analyzing raw logs, flows, traffic and identity across all assets, aiSIEM offers complete visibility, proactive threat detection, immediate containment and elimination of threats with continuous policy enforcement, and compliance monitoring and reporting."    

Simplifying SIEM

While the traditional SIEM product category remains one of the fastest growing market segments in cybersecurity, the adoption of hybrid cloud networks, the growing complexity and number of cybersecurity threat vectors and a lack of cybersecurity expert talent, demand an improved set of capabilities for organizations to complement their existing SIEM investment. Furthermore, the volume of rapidly growing security incidents has become unmanageable for resource-constrained security operations teams, underscoring the need for end-to-end automation of detection and response.

Gartner states that "the evolution of the technology indicates that modern SIEM works with more than just log data and applies more than simple correlation rules for data analysis. Some of the capabilities that go beyond the definition above and usually are incorporated into modern SIEMs are: collect and analyze not just logs but also data from endpoints and the network (similar to network traffic analysis [NTA] and endpoint detection and response [EDR] solutions)…robust threat intelligence (TI) support (incorporating feeds and other sources for correlation and enrichment)…data analytics that goes beyond rules (such as UEBA capabilities)…advanced security operations center (SOC) workflow capabilities (although still limited when compared to dedicated SOAR tools)."1

Unlike traditional SIEM solutions, Seceon aiSIEM goes beyond static log data, simple analysis for correlation of events, and application of network traffic rules to enhance an organization's security posture. Real-time machine learning handles large data volumes in conjunction with contemporary big/fast data frameworks, efficiently enabling adaptation to any environment dynamically upon deployment for deep data analysis. The complexity is substantially reduced by Seceon's dynamic threat models engine and its behavioral analytics engine which combined, eliminate need for writing complex rules. Moreover, when complemented by Seceon's advanced patent-pending correlation engine, powered by artificial intelligence that generates meaningful alerts with improved accuracy from scores of threat indicators, Seceon's aiSIEM surfaces relevant threats in minutes, that would have taken hours or days to detect when previously analyzed by human security professionals. aiSIEM effectively meets critical security requirements for digitally driven business with an automated approach of producing and applying actionable intelligence for threat containment and elimination in near real-time.

According to Gartner, "Now, security experts must apply a new approach: Continuous Adaptive Risk and Trust Assessment (CARTA)-continuous adaptive risk and trust assessment. This to stay competitive with emerging business opportunities. The key is to apply the philosophy across the business from DevOps to external partners."2  

Seceon believes its aiSIEM aligns to the Gartner's CARTA approach to provide four key benefits:

  • Proactive threat detection to reduce Mean-Time-To-Identify (MTTI) threats. aiSIEM proactively detects threats and surfaces them in real-time or near real-time without an agent or alert fatigue. It uses dynamic threat models, machine learning and AI with actionable intelligence combined with proprietary feature engineering for threat detection of known and unknown threats. The aiSIEM solution performs threat detection across the cloud, on-premise, and hybrid environments for MSSPs and Enterprises.
  • Automatic threat remediation to reduce Mean-Time-To-Resolve (MTTR) threats. aiSIEM performs automatic threat containment and elimination in real-time. It also provides clear actionable steps to eliminate the threats that can either be taken automatically by the system or manually by the security expert post-analysis. The auto-remediation can also be triggered as per a specific 'configurable' schedule and can be used for effective risk mitigation in near real-time.
  • Continuous compliance and risk monitoring. aiSIEM offers continuous compliance and scheduled or on-demand reporting for HIPAA, GDPR, PCI-DSS, NIST, FINRA and many other similar regulations by providing long-term data analytics for security operations, investigation support and reporting.
  • Comprehensive visibility. aiSIEM ingests all your raw streaming data (Logs, Packets, Flows, Identities) from many different types of devices and applications in your environment. It then enriches the data extracting meaningful features to provide real-time extensive view of all assets (users, hosts, servers, applications, data access and movement, traffic) that are on premise, cloud or hybrid and their interactions.

Some of the key capabilities of aiSIEM include:

  • Large-scale and robust data collection from cloud and other modern IT data sources,
  • Collection and analysis of logs and raw streaming data (packets, flows, identities) from networks and endpoints,
  • Integrated threat intelligence (TI) feeds for correlation and enrichment; updated daily by 40 NSA, honeypot and industry feeds of known threats,
  • Enhanced data analytics beyond rules,
  • Fast and scalable search over volumes of raw data,
  • Multi-layer detection – Detection of known, as well as, never-before-seen threats at the earliest phase of the chain,
  • Productivity increase – Advanced analytics over multiple stages eliminates false positives – 25 x threat surface reduction,
  • Threat impact analysis – Comprehensive interactive visual interface to drill down threats and effected sources and targets.

Additional Resources
Datasheet: http://www.seceon.com/wp-content/uploads/2018/04/Seceon_aiSIEM_DataSheet.pdf
Follow Seceon online: Twitter | Facebook | LinkedIn

1 Gartner, "SIEM Technology Assessment," Anton Chuvakin, Augusto Barros, 12 October 2017. 
2 Gartner, "The Gartner IT Security Approach for the Digital Age," 12 June 2017.

About Seceon
Taking a new approach to conventional threat detection and management, Seceon helps today's enterprise detect and stop both recognized and never-seen-before threats when they happen, instead of days, weeks or months later. Leveraging intelligent data collection and analysis, Seceon's Open Threat Management platform provides unmatched visibility across the entire network—from users and devices to applications and flows—surfacing only the most relevant threats in real-time and the means necessary to eliminate them immediately. To learn more about Seceon's aiSIEM solution, please visit www.seceon.com or call (978)-923-0040.

Media Contact: Alana Suko, 781-258-5803, [email protected]

 

Cision View original content with multimedia:http://www.prnewswire.com/news-releases/seceon-simplifies-security-information-and-event-management-with-aisiem-300630344.html

SOURCE Seceon

More Stories By PR Newswire

Copyright © 2007 PR Newswire. All rights reserved. Republication or redistribution of PRNewswire content is expressly prohibited without the prior written consent of PRNewswire. PRNewswire shall not be liable for any errors or delays in the content, or for any actions taken in reliance thereon.

Latest Stories
To Really Work for Enterprises, MultiCloud Adoption Requires Far Better and Inclusive Cloud Monitoring and Cost Management … But How? Overwhelmingly, even as enterprises have adopted cloud computing and are expanding to multi-cloud computing, IT leaders remain concerned about how to monitor, manage and control costs across hybrid and multi-cloud deployments. It’s clear that traditional IT monitoring and management approaches, designed after all for on-premises data centers, are falling short in ...
Most modern computer languages embed a lot of metadata in their application. We show how this goldmine of data from a runtime environment like production or staging can be used to increase profits. Adi conceptualized the Crosscode platform after spending over 25 years working for large enterprise companies like HP, Cisco, IBM, UHG and personally experiencing the challenges that prevent companies from quickly making changes to their technology, due to the complexity of their enterprise. An accomp...
DevOpsSUMMIT at CloudEXPO, to be held June 25-26, 2019 at the Santa Clara Convention Center in Santa Clara, CA – announces that its Call for Papers is open. Born out of proven success in agile development, cloud computing, and process automation, DevOps is a macro trend you cannot afford to miss. From showcase success stories from early adopters and web-scale businesses, DevOps is expanding to organizations of all sizes, including the world's largest enterprises – and delivering real results. Am...
The benefits of automated cloud deployments for speed, reliability and security are undeniable. The cornerstone of this approach, immutable deployment, promotes the idea of continuously rolling safe, stable images instead of trying to keep up with managing a fixed pool of virtual or physical machines. In this talk, we'll explore the immutable infrastructure pattern and how to use continuous deployment and continuous integration (CI/CD) process to build and manage server images for any platfo...
Dynatrace is an application performance management software company with products for the information technology departments and digital business owners of medium and large businesses. Building the Future of Monitoring with Artificial Intelligence. Today we can collect lots and lots of performance data. We build beautiful dashboards and even have fancy query languages to access and transform the data. Still performance data is a secret language only a couple of people understand. The more busine...
Automation is turning manual or repetitive IT tasks into a thing of the past-including in the datacenter. Nutanix not only provides a world-class user interface, but also a comprehensive set of APIs to allow the automation of provisioning, data collection, and other tasks. In this session, you'll explore Nutanix APIs-from provisioning to other Day 0, Day 1 operations. Come learn about how you can easily leverage Nutanix APIs for orchestration and automation of infrastructure, VMs, networking, an...
Sanjeev Sharma Joins November 11-13, 2018 @DevOpsSummit at @CloudEXPO New York Faculty. Sanjeev Sharma is an internationally known DevOps and Cloud Transformation thought leader, technology executive, and author. Sanjeev's industry experience includes tenures as CTO, Technical Sales leader, and Cloud Architect leader. As an IBM Distinguished Engineer, Sanjeev is recognized at the highest levels of IBM's core of technical leaders.
Nicolas Fierro is CEO of MIMIR Blockchain Solutions. He is a programmer, technologist, and operations dev who has worked with Ethereum and blockchain since 2014. His knowledge in blockchain dates to when he performed dev ops services to the Ethereum Foundation as one the privileged few developers to work with the original core team in Switzerland.
It cannot be overseen or regulated by any one administrator, like a government or bank. Currently, there is no government regulation on them which also means there is no government safeguards over them. Although many are looking at Bitcoin to put money into, it would be wise to proceed with caution. Regular central banks are watching it and deciding whether or not to make them illegal (Criminalize them) and therefore make them worthless and eliminate them as competition. ICOs (Initial Coin Offer...
René Bostic is the Technical VP of the IBM Cloud Unit in North America. Enjoying her career with IBM during the modern millennial technological era, she is an expert in cloud computing, DevOps and emerging cloud technologies such as Blockchain. Her strengths and core competencies include a proven record of accomplishments in consensus building at all levels to assess, plan, and implement enterprise and cloud computing solutions. René is a member of the Society of Women Engineers (SWE) and a m...
ICC is a computer systems integrator and server manufacturing company focused on developing products and product appliances to meet a wide range of computational needs for many industries. Their solutions provide benefits across many environments, such as datacenter deployment, HPC, workstations, storage networks and standalone server installations. ICC has been in business for over 23 years and their phenomenal range of clients include multinational corporations, universities, and small busines...
The dream is universal: heuristic driven, global business operations without interruption so that nobody has to wake up at 4am to solve a problem. Building upon Nutanix Acropolis software defined storage, virtualization, and networking platform, Mark will demonstrate business lifecycle automation with freedom of choice and consumption models. Hybrid cloud applications and operations are controllable by the Nutanix Prism control plane with Calm automation, which can weave together the following: ...
In today's always-on world, customer expectations have changed. Competitive differentiation is delivered through rapid software innovations, the ability to respond to issues quickly and by releasing high-quality code with minimal interruptions. DevOps isn't some far off goal; it's methodologies and practices are a response to this demand. The demand to go faster. The demand for more uptime. The demand to innovate. In this keynote, we will cover the Nutanix Developer Stack. Built from the foundat...
Digital Transformation (DX) is a major focus with the introduction of DXWorldEXPO within the program. Successful transformation requires a laser focus on being data-driven and on using all the tools available that enable transformation if they plan to survive over the long term. A total of 88% of Fortune 500 companies from a generation ago are now out of business. Only 12% still survive. Similar percentages are found throughout enterprises of all sizes. We are offering early bird savings...
Organize your corporate travel faster, at lower cost. Hotailors is a next-gen AI-powered travel platform. What is Hotailors? Hotailors is a platform for organising business travels that grants access to the best real-time offers from 2.000.000+ hotels and 700+ airlines in the whole world. Thanks to our solution you can plan, book & expense business trips in less than 5 minutes. Accordingly to your travel policy, budget limits and cashless for your employees. With our reporting, int...