AccessData Group, a leading provider of digital forensics, cyber-security, and e-discovery software, today announced a new solution that operates with the HP ArcSight platform and is designed to deliver accelerated incident response to security threats. This new solution allows bi-directional communication between AccessData’s Cyber Intelligence & Response Technology (CIRT) platform and the HP ArcSight Security Information and Event Management (SIEM) platform.
“We know that HP is committed to continual innovation in cyber security, and this new solution enables our customers to stay ahead of new threats,” says Chad Gailey, Vice President, Worldwide Channel Sales at AccessData. “This solution has already demonstrated success out of the gate, with early sales to both a multi-national defense organization and a Fortune 100 consumer packaged goods company.”
The high level of interoperability between the CIRT platform and HP ArcSight SIEM answers the critical need for more streamlined and holistic incident response, and faster response times in the face of advanced persistent threats, sophisticated hacking attacks, and constantly evolving malware.
CIRT extends the functionality of the HP ArcSight SIEM platform by providing three key functions. First, it delivers holistic rapid response by integrating the critical capabilities required for comprehensive root cause analysis full packet capture network forensics, advanced computer forensics (hard drive, memory, and peripherals), malware triage, and enterprise-wide auditing for compromise assessment. Second, CIRT enables real-time collaboration among all security and response teams; and third, it provides automated batch remediation so organizations are able to eradicate threats, not just contain them.
The interoperability of CIRT and HP ArcSight SIEM is unprecedented because users are able to execute operations, view analysis, and launch remediation operations from within either platform interface quickly and efficiently. The response operations can be customized and complex. Furthermore, unlike other solutions, the automated response is holistic; it is not only endpoint analysis or a combination of watered-down network and endpoint forensics. It allows organizations to gather actionable intelligence very quickly and provides real remediation.
“To combat the growing number of cyber threats, organizations today must take a holistic approach to security, one that provides broad visibility into vulnerabilities and real-time capabilities to stop threats in their tracks,” said Frank Mong, Vice President and General Manager, Solutions, Enterprise Security Products at HP. “We want to ensure our customers have seamless access to best-of-breed technology to address every stage of a potential cyber threat, and this new interoperability with AccessData is a flagship example of this program at work.”.
About AccessData Group
AccessData Group (accessdata.com) has pioneered digital investigations and litigation support for more than 25 years and is the maker of FTK®, MPE+™, SilentRunner, Summation and the CIRT security framework. Over that time, the company has grown to provide a family of stand-alone and enterprise-class solutions that enable digital investigations of any kind, including computer forensics, mobile forensics, incident response, e-discovery, legal review and information assurance. 130,000 users in law enforcement, government agencies, corporations and law firms around the world rely on AccessData software solutions and its premier digital investigations and hosted review services. AccessData Group is also a leading provider of digital forensics and litigation support training and certification.