Bricata is headed to the 2017 RSA Conference in San Francisco, February 13-17 with momentum stemming from a recent deal with Cylance to strengthen its solution with artificial intelligence and recently being named among “vendors to watch” in the 2017 Gartner report: Magic Quadrant for Intrusion Detection and Prevention Systems.
The Gartner report lists several use cases driving the continuation of the IDPS market. “IDPS continues to be a significant network security market, but needs to start addressing the internal use case better that covers protection of internal assets, and helps detect and prevent lateral movement,” wrote the report authors Craig Lawson, Adam Hils and Claudio Neiva, who are all analysts with Gartner.
The market has a pressing need for new cybersecurity technologies that proactively hunt for advanced persistent threats (APTs) that are already inside the firewall. By proactively hunting for threats, dwell time of malware is decreased and time-to-contain APTs is accelerated. Indeed, the integration with Cylance adds one more layer of inspection to address the challenge of detecting and hunting for threats within the organization by bringing to market a solution that weaves together three leading threat detection engines.
Bricata adds Open Source (Suricata and Bro) to provide signature-based protection and scripting to hunt for any undetected threats through pattern matching, variance and behavior anomalies with the integration to Cylance adding machine learning analysis to the files carved for inspection and scoring to address zero-day threats.
Our sense of momentum is being fueled by the traction and interest we are observing in the market for tackling the cybersecurity problem differently. Many of the recent high-profile breaches can be traced back to the presence of undetected malware inside the network. Enterprises need to evolve their security strategies to layer in an active hunting capability alongside detection and prevention strategies.
We will be demonstrating the resulting technology integration at the RSA Conference in Booth #536 in the South Hall of the RSA 2017 conference.
* * *
Gartner Disclaimer: Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.