IBM Rolls Out 'Security Intelligence with Big Data'
Feb 06, 2013 (Close-Up Media via COMTEX) --
To aid in the detection of stealthy threats that can hide in the increasing mounds of big data, IBM announced IBM Security Intelligence with Big Data, combining security intelligence with big data analytics capabilities for both external cyber security threats and internal risk detection and prevention.
The company said that IBM Security Intelligence with Big Data provides a comprehensive approach that allows security analysts to extend their analysis well beyond typical security data and to hunt for malicious cyber activity.
According to a release, the new solution combines real-time correlation for continuous insight, custom analytics across massive structured data (such as security device alerts, operating system logs, DNS transactions and network flows) and unstructured data (such as emails, social media content, full packet information and business transactions), and forensic capabilities for evidence gathering. The combination helps organizations address the most vexing security challenges, including advanced persistent threats, fraud and insider threats.
The Depository Trust & Clearing Corp. (DTCC) is a financial services transaction clearing and settlement provider linking funds and carriers with their distribution networks and handling more than 3.6 million securities from 122 countries and territories valued at US$39.5 trillion. DTCC protects the financial markets and systems as a whole, using scale and expertise with advanced data analytics to perfect a more robust, unified infrastructure and promote solutions that systematically reduce risks, amplify operating efficiency and minimize cost for the member firms.
"As the sophistication and technological means of cyber-criminals increase, the financial industry and government need to move to a risk-based framework that incorporates the dynamic nature of the threat landscape," said Mark Clancy, CISO, Managing Director, Technology Risk Management, DTCC. "We need to move from a world where we 'farm' security data and alerts with various prevention and detection tools to a situation where we actively 'hunt' for cyber-attackers in our networks. IBM's Security Intelligence with Big Data solution gives us a practical way to gain visibility across our environment. We're gaining real-time security awareness and meaningful insight into historical activity across years of diverse data." "Leveraging assets from across IBM, we are on a relentless push to expand the scope of our security intelligence capabilities for clients," said Brendan Hannigan, General Manager of IBM's Security Systems Division. "Our goal is to provide actionable insight into every bit of data, no matter where it resides across the network, and help clients learn from past activity to better secure the future."
Made in IBM Labs, IBM Security Intelligence with Big Data unites the real-time security correlation and anomaly detection capabilities of the IBM QRadar Security Intelligence Platform with the custom analysis and exploration of vast business data provided by IBM InfoSphere BigInsights. The result is an integrated solution that combines intelligent monitoring and alerting with a workbench for threat and risk analysts to analyze and explore security and enterprise data in ways previously not possible.
Key capabilities, as described by the company, include:
-Real-time correlation and anomaly detection of diverse security and network data
-High-speed querying of security intelligence data
-Flexible big data analytics across structured and unstructured data including security, email, social media, business process, transactional, device, and other data
-Graphical front-end tool for visualizing and exploring big data
-Forensics for deep visibility into network activity
((Comments on this story may be sent to email@example.com))
[ Back To TMCnet.com's Homepage ]