EventTracker Launches Security Center 8.3
The comprehensive EventTracker Security Center 8.3 platform includes SIEM, intrusion detection, vulnerability scanning, threat intelligence, and honeynet deception technology, and is implemented either on-premises or in the cloud. The Security Center 8.3 platform is also at the core of EventTracker’s SIEM-as-a-Service offering, SIEMphonic. The company ensures its clients’ success by overlaying the technology with professional services for remote administration, analysis, compliance support, and tuning for optimal results. These services are provided by security experts at the company’s 24x7 intelligence-driven security operations center (SOC).
A mainstay in the cybersecurity space, EventTracker has been recognized by Gartner Research in its Magic Quadrant for SIEM for nine consecutive years.
Highlights of EventTracker Security Center 8.3 include:
- Dormant Malware Hunter -- Modern malware, including ransomware, copies itself with different names and hashes to various folders, so that if the original is identified and removed, the clones remain ready to attack at a later time. Dormant Malware Hunter identifies hidden EXE and DLL files that have never executed, while exempting those found on a known safe files list. As a result, copies of malware can be removed from the network, preventing re-infection or propagation.
- Threat Center STIX/TAXII Support -- EventTracker’s threat intelligence capabilities are greatly enhanced through the integration of commercial and open source threat feeds and intelligence from STIX/TAXII-compliant providers, as well as from the clients’ own internal honeynets. Threat Center uses the data to reduce false positives while finding and prioritizing potential and actual threats.
- Enhanced MSP User Management – An important focus of this release is empowering IT service providers to protect their customers’ infrastructure with enhanced scalability and user management for managed service providers (MSPs) by handling subscription-related activities for each individual client, such as tracking the monthly usage of services. It also allows easier monitoring of usage by multiple customers and more granular management of user permissions.
- Improved User Interface for EventVault Explorer – The upgraded interface delivers faster data loading, more selection control, and a simpler user experience for MSPs using EventVault Explorer. The Explorer capability makes log searches easier and faster by searching for more specific data and saving search criteria for future reference.
These new upgrades featured in Security Center 8.3 greatly increase an enterprise’s network security and awareness of external threats. This is especially critical since more than 90 percent of cyberattacks come from external threat actors, according to the 2017 Verizon Data Breach Investigations Report.
The EventTracker Security Center platform is also available with co-managed services that allow enterprises to easily assess incidents in the infrastructure with as much or as little outside expertise as needed. Its key features extend beyond traditional SIEM and log management to enable organizations to defend their networks from the latest advanced persistent threats while also complying with multiple regulations.