HP uses big data to detect persistent threats

There is no shortage of vendors offering big data analytics solutions designed to help enterprise companies enhance revenue-boosting decision processes, but Hewlett-Packard is extending big data analytics capability further to security applications.

The Palo Alto, Calif.-based company today announced upgrades to its HP ArcSight portfolio that includes capabilities for unified security analytics for big data as well as expanded monitoring features to speed up detection of persistent threats.

“Adversaries only need to get it right once to invoke serious damage on an organization’s private data,” said Haiyang Song, vice-president of ArcSight enterprise security products at HP. “With solutions designed to enhance threat detection through improved security analytics for big data, HP (NYSE:HPQ) enables customers to quickly identify potential attackers and take action proactively.”

The upgrades include:

  • Out-of-the-box threat profiles and threat profile intelligence for HP ArcSight Threat Detector 2.0
  • HP ArcSight Threat Response Manager 5.5 gets cloud-ready, closed-loop capabilities for faster threat detection and response time to mitigate advance persistent threats (APT)
  • Enhancements to HP ArcSight IdentityView 2.5 which now has expanded correlation of user identity, roles and activities across events and other security incidents

With unified analytics from applications, users, networks and systems, HP provides a unique portfolio of solutions integrating information security with big data, HP said.

“Collectively, these solutions process events at scale, provide deep insights out-of-the-box, correlate user context and provide actionable intelligence to reduce the risk of APTs,” HP said in a statement.

With the launch of HP ArcSight IdentityView 2.5, HP also expanded the number of users that a single instance can monitor by 10 times.

If a user’s activity on the network does not correspond to permitted access controls and baseline bahaviour based on historical correlation data, the solution will flag the profile for further investigation. This would allow the company’s security operations team to identify intentional versus unintentional activities and mitigate potential threats in real-time.

HP ArcSight Identify View v2.5, HP ArcSight Threat Response Manager and HP ArcSight Threat Detector v2.0 are now available worldwide.

Would you recommend this article?


Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.

Jim Love, Chief Content Officer, IT World Canada

Featured Download

Featured Articles

Empowering the hybrid workforce: how technology can build a better employee experience

Across the country, employees from organizations of all sizes expect flexibility...

What’s behind the best customer experience: How to make it real for your business

The best customer experience – the kind that builds businesses and...

Overcoming the obstacles to optimized operations

Network-driven optimization is a top priority for many Canadian business leaders...

Thriving amid Canada’s tech talent shortage

With today’s tight labour market, rising customer demands, fast-evolving cyber threats...

Staying protected and compliant in an evolving IT landscape

Canadian businesses have changed remarkably and quickly over the last few...

Related Tech News

Tech Jobs

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

Tech Companies Hiring Right Now