Story image

Threat detection and analytics at the core of new Endace & BluVector partnership

17 Apr 2018

At the RSA Conference in San Francisco week, security vendors Endace and BluVector announced a partnership that will bring together threat detection and analytics.

BluVector specializes in AI-driven network security and Endace specializes in high-speed network recording, playback and analytics hosting.

The two companies will now host BluVector Cortex advanced threat detection on Endace’s EndaceProbe Analytics Platform.

“The sophistication and evolution of today’s cyber adversaries continues to accelerate, as does the number of successful intrusions. This makes network security even more important in today’s connected world,” comments Endace CEO Stuart Wilson.

“But an intrusion doesn’t have to lead to a major breach or cyber incident. The partnership between BluVector and Endace combines state-of-the-art threat detection with the accurate packet-level evidence needed to investigate, respond to and neutralize cyber intruders quickly and efficiently.”

The partnership will enable network operations (NetOps) and security operations (SecOps) to leverage AI-based threat detection alongside packet-level evidence. This, the companies say, will help teams to make quicker, better-informed and more confident decisions.

“Information security teams must increase their visibility and analytics capabilities to detect intruders faster and respond to them quickly and efficiently to avoid high-impact cyber incidents,” Comments BluVector CEO Kris Lovejoy.

The solution collects, analyses and prioritizes data and events from thousands of data sources.

SecOps teams can use this information in context to understand any threats and the severity level.

The company says customers are able to deploy BluVector Cortex directly onto EndaceProbes, an analytics application hosting platform. Customers have a common hardware platform that can host the technology alongside other network security and performance analytics solutions.

 “Our partnership with Endace brings together the best in the ability to flag, record and replay attacks so IT and security teams have sufficient quality information about the incident, the data and systems affected, and the company’s relative exposure to respond accurately. And they have all this capability on a single platform,” Lovejoy concludes.

Last year Endace expanded into the Asia Pacific region with a new office in Melbourne, Australia. This will allow the company to support Australian and Asia Pacific customers, as well as room for business expansion.

“The new Melbourne office provides a base for supporting our Australian and Asia Pacific customers, and gives us room to scale up as business in the APAC region grows,” explained Endace CEO Stuart Wilson at the time.

“We’re seeing business growing in all regions, and our partnerships with partners such as Cisco, Plixer, Dynatrace and others are helping to fuel that growth,” Wilson concludes.

Privacy: The real cost of “free” mobile apps
Sales of location targeted advertising, based on location data provided by apps, is set to reach $30 billion by 2020.
Myth-busting assumptions about identity governance - SailPoint
The identity governance space has evolved and matured over the past 10 years, changing with the world around it.
Forrester names Crowdstrike leader in incident response
The report provides an in-depth evaluation of the top 15 IR service providers across 11 criteria.
Slack doubles down on enterprise key management
EKM adds an extra layer of protection so customers can share conversations, files, and data while still meeting their own risk mitigation requirements.
Security professionals want to return fire – Venafi
Seventy-two percent of professionals surveyed believe nation-states have the right to ‘hack back’ cybercriminals.
Alcatraz AI to replace corporate badges with AI security
The Palo Alto-based startup supposedly leverages facial recognition, 3D sensing, and machine learning to enable secure access control.
Ensign and IronNet partner to create cyber analytics capabilities
The Singapore-based joint venture will form a Cyber Analytics Center for Excellence focused on securing regional enterprises from sophisticated cyber threats.
Unencrypted Gearbest database leaves over 1.5mil shoppers’ records exposed
Depending on the countries and information requirements, the data could give hackers access to online government portals, banking apps, and health insurance records.