LiveAction's ThreatEye® Brings Together AI-driven Anomaly Detection and Predictive Threat Intelligence in New Dedicated UI Built for SOC Analysts
LiveAction, a leader in end-to-end network security and performance visibility, today announced the next generation of ThreatEye®, the company's Network Detection and Response (NDR) platform. The latest release continues to build on the company's advanced AI-driven Anomaly Detection capabilities with packet-based behavioral fingerprinting to identify behavior in encrypted traffic streams, and host-based behavioral detections. It includes a new User Interface (UI) to deliver simplified management of the threat investigation lifecycle, allowing Security Operations Center (SOC) analysts to correlate sets of findings and policy violations to track the state of incidents, delivering enhanced workflow capabilities that speed threat identification and remediation.
In addition to the new UI, ThreatEye® now includes Predictive Threat Intelligence capabilities in its threat intel feed that tracks domains and IP addresses not yet active but registered by threat actors and associated malware campaigns. This allows network security analysts to identify when a user is communicating with previously unknown threat actor infrastructure before malicious campaigns are launched. Additionally, leveraging LiveWire's fully integrated "intelligent packet capture" capabilities provides forensic insights for single-click visibility to reduce mean time to resolution (MTTR).
The ThreatEye® NDR platform was purpose-built to secure an organization's network from core to edge to cloud. The platform offers unprecedented visibility that helps SOC teams detect threats that other solutions miss, decrease the time needed to investigate and remediate threats, and ensures network compliance. The new UI delivers an integrated approach to searching, collaborating, and alerting, that further lowers MTTR and reduces the cost of investigation by categorizing and classifying findings into incident states, conditions, and techniques.
"For SOC analysts, the time it takes to investigate an incident is often too long because they don't have the full contextual information needed to resolve an incident. By the time they identify the threat, the damage is often done. The new UI in ThreatEye® was built by SOC analysts for SOC analysts, and auto-enriches and correlates disparte data sources so they can respond to threats in real-time and accelerate triage," said Bill Cantrell, General Manager of ThreatEye at LiveAction. "When combined with ThreatEye's additional new capabilities - including Predictive Threat Intelligence, advanced AI-driven Behavioral Anomaly Detection, and our integrated packet capture features - SOC teams get a powerful network detection and response platform that dramatically speeds threat identification and remediation, while reducing downtime and costs."
Key benefits and updated features of ThreatEye®:
"It's critical that our team works together to prioritize threats and remediate them intelligently and collaboratively. ThreatEye's new UI and behavioral analysis capabilities drive this collaboration and streamline the workflow for our analysts providing them with a level of visibility we previously didn't have," said the Director of Information Security at a Financial Services organization. "Furthermore, the last thing we need is another tool that collects data and works separately from other systems, and ThreatEye works hand in hand with our other SIEM, SOAR and threat intelligence tools to help our team fill visibility gaps and speed threat identification and remediation."
For more information about ThreatEye® or to get a demo today, click here.
LiveAction provides unmatched visibility into network and application performance from a single pane of glass. This gives enterprises confidence that the network is meeting business objectives, offers IT administrators full visibility for better decision making, and reduces the overall cost of operations. By unifying and simplifying the collection, correlation and presentation of network and application data, LiveAction empowers network professionals to proactively and quickly identify, troubleshoot, and resolve issues across increasingly large and complex networks. To learn more and see how LiveAction delivers unmatched network visibility and security, visit https://www.liveaction.com.
Fun with FreePBX
Special Keynote Address
Continental Breakfast - For Paid Conference Pass Holders, Exhibitors, Sponsors, Speakers, Press