This action might not be possible to undo. Are you sure you want to continue?
Data analytics looks at the past to secure the future and to stay ahead of the attack ARMONK, NY – X January 2012 – Advanced attacks, widespread fraud and the pervasive use of social media, mobile and cloud computing are drastically altering the security landscape. As Big Data grows exponentially, traditional methods of collecting and analyzing data need to change. To aid in the detection of stealthy threats that can hide in the increasing mounds of data, IBM (NYSE: IBM) today announced IBM Security Analytics for Big Data, combining leading security intelligence with big data analytics capabilities for both external Cyber Security threats and internal technology risk detection and prevention. IBM Security Analytics for Big Data provides a comprehensive approach that combines real-time correlation for continuous insight, custom analytics across massive structured (such as security device alerts, operating system logs and network flows) and unstructured data (such as emails, social media content, and DNS transactions), and forensic capabilities for irrefutable evidence. This combination helps organizations address the most vexing security challenges, including advanced persistent threats, fraud and insider threats. As a result, it assists clients in protecting sensitive information assets and reducing the risk of financial loss, compliance violations and reputational damage. The Depository Trust & Clearing Corporation (DTCC) is a leading financial services transaction clearing and settlement provider linking funds and carriers with their distribution networks and handling more than 3.6 million securities from 122 countries and territories valued at US$39.5 trillion. DTCC protects the financial markets and systems as a whole, using scale and expertise with advanced data analytics to perfect a more robust, unified infrastructure and promote solutions that systematically reduce risks, amplify operating efficiency and minimize cost for the member firms. “As the sophistication and technological means of cyber-criminals increase, the financial industry and government need to move to a risk-based framework that incorporates the dynamic nature of the threat landscape,” said Mark Clancy, CISO, Managing Director, Technology Risk Management, DTCC. “We need to move from a world where we ‘farm’ security data and alerts with various prevention and detection tools to a situation where we actively ‘hunt’ for cyber-attackers in our networks. IBM’s Security Analytics for Big Data solution gives us a practical way to gain visibility across our environment. We’re gaining real-time security awareness and meaningful insight into historical activity across years of diverse data.” “IBM Security Analytics for Big Data aligns with the ‘finding the needle in the haystack’ mentality, only we’re not dealing with a haystack anymore – we’re dealing with an ever-expanding universe of data, akin to finding a grain of sand in a galaxy,” said Brendan Hannigan, General Manager of IBM’s Security Systems Division. “IBM Security QRadar combined with the IBM Hadoop-enabled BigInsights platform is uniquely capable of providing essential insights into historical and real-time data. No one else can do this; no one else has the heritage in understanding data like IBM.” For forward-leaning organizations seeking advanced insight into security risks, IBM Security Analytics for Big Data provides unprecedented powers of detection by combining deep security expertise with analytical insights on a massive scale. The solution helps organizations answer questions they could never ask before, by widening the scope and scale of investigation. By
explores and reports on security and enterprise data in ways previously not possible. application. with more flexibility. enriched security data alongside unstructured data from across the enterprise. which helps discover insights among massive volumes of disparate data. But any time you can do something where you can measure the success or failure in a provable way. Solution accelerators for specific use cases are planned. “Success today is too often defined as the absence of failure by the information security industry. Integrated Security Intelligence and Big Data Analytics for Advanced Use Cases Security use cases such as advanced persistent threat detection. The result is an integrated.” Clancy said. site reputation and user identity.analyzing structured. QRadar performs real-time correlation. intelligent solution that collects. and deliver more accurate results. Such enrichment adds valuable security context such as geography. accommodating both the variety and volume of data needed for advanced security use cases. to pre-defined rules and dashboards that codify industry best practices and accelerate time to value. IBM big data products analyze enriched security information from QRadar along with vast amounts of data from unstructured and semi-structured sources. These capabilities help clients kickstart their big data security initiatives through design best practices and proven implementation expertise. you can produce a much better outcome. We do a lot of things in our profession that are hard to observe and hard to quantify. to further accelerate deployment and enhance benefits. monitors. the IBM solution helps find malicious activity hidden deep in the masses of an organization’s data. fraud detection and insider threat analysis require a new class of solutions that can analyze more data. Key capabilities include: Real-time correlation and anomaly detection of diverse security data High-speed querying of security intelligence data Flexible big data analytics across structured and unstructured data – including security. In parallel. and sends enriched security data to IBM big data products. instead of the demonstration of effectiveness. Information is subsequently fed back to QRadar. IBM Security Analytics for Big Data combines the real-time security visibility of the IBM QRadar Security Intelligence Platform with the custom analytics of the IBM big data platform. continuous learning. IBM is also delivering new data forwarding capabilities in QRadar that enable real-time streaming of enhanced event and network flow data [I need to determine timing of this capability]. analyzes. anomaly detection and reporting for immediate threat detection. these services are being offered to business and solution partners for delivery to end clients. providing a facility for closed-loop. . without which any analysis is incomplete. business process and other data Graphical front-end tool for visualizing and exploring big data Forensics for deep visibility into network activity Rich Solutions with a Robust Roadmap Included in IBM Security Analytics for Big Data is an extensive set of pre-packaged security intelligence content. The solution is additionally backed by new Security Analytics for Big Professional Services from IBM. ranging from a comprehensive security data taxonomy and automated data normalization.
. next-generation intrusion protection and more. IBM operates one of the world's broadest security research and development. risk management. are available immediately. endpoint management. IBM offers solutions for identity and access management. Europe and Asia Pacific.000 security patents. IBM monitors 15 billion security events per day in more than 130 countries and holds more than 3. and delivery organizations. 11 software security development labs and an Institute for Advanced Security with chapters in the United States. please visit: www. including IBM InfoSphere BigInsights.ibm. For more information on IBM security. This comprises nine security operations centers. application development. database security. security information and event management. nine IBM Research centers. data.com/security.Availability IBM QRadar Security Intelligence Platform products and IBM big data platform products. applications and infrastructure. About IBM Security IBM's security portfolio provides the security intelligence to help organizations holistically protect their people.