New Innovation in IDS/IPS Provides Natural Progression to Network-Level Threat Hunting and Advanced Cybersecurity Protection without Adding Headcount, Training or More Tools
April 4, 2018 – Columbia, Md. – Bricata, Inc., a developer of next-generation network intrusion detection and prevention solutions (IDS/IPS), will be showcasing threat hunting at the 2018 RSA Conference in San Francisco (booth #4415). Threat hunting is a sophisticated yet easy-to-use capability in the Bricata platform and is a natural progression of the company’s unique approach to enhancing network security.
“At its core, Bricata offers advanced IPS/IDS protection with multiple detection engines and threat feeds to defend network traffic and core assets,” wrote John Breeden II, an award-winning journalist and reviewer, in an independent product review for CSO Online titled Review: Bricata adds threat hunting to traditional IPS/IDS. “But it goes a step farther, adding the ability to launch threat hunts based on events, or simply anomalies.”
The review continued, “This would enable an organization to begin network-level threat hunting using the same staff and tools they are already using for IPS monitoring. It would be a good step in the right direction towards better protection without the pain of installing additional programs or re-training staff.”
Over the last four years, Bricata has focused on bringing new innovation to the IDS/IPS market. The company’s product is an appliance – either physical or virtual – that examines traffic for threats in three distinct yet complementary ways: signature detection, network behavioral anomaly detection, and zero-day malware detection through an OEM agreement with Cylance.
The technique of looking for threats in different perspectives brings important context which enables security professionals to more effectively triage the high-volume security alerts they observe daily. The manner in which Bricata identifies network anomalies captures useful metadata that lends itself naturally to threat hunting – and detecting lateral movement of malware most traditional sensors miss.
Team members and executives from Bricata will facilitate a number of activities and events around the RSA Conference including the following:
1) Threat hunting demonstrations. Stop by booth #4415 at the RSA conference for a demonstration of how IDS and IPS can support threat hunting. Interested parties can also find out more about these new threat hunting capabilities in greater detail here.
2) Attend this session on security analytics. Druce MacFarlane, vice president of Products at Bricata will present a session on Improving Data Quality in Security Analytics. The session will be held on Thursday, April 19, 2018, at 11:00 a.m. PT in the South Briefing Center.
3) Complimentary webinar on threat hunting. Whether you are attending the RSA conference or not, you won’t want to miss this webinar with Tim Crothers, a 20-year veteran of cybersecurity with a Fortune 500 background and author of 15 books. The webinar will be held on Wednesday, May 8, 2018 at 2 p.m. ET. Keep an eye on the Bricata website for registration details which are coming soon.
4) Learn more about threat hunting. Bricata regularly publishes educational information on threat hunting on its company blog. Those interested in learning more may find these related posts useful:
a) Threat Hunting is an Imperative Despite Challenges in Definitions, Data and Skills
b) Morphing Network Security: 5 Takeaways from an SC Media Webinar
c) 10 Trends in Threat Hunting and Security Analytics
“The essence of threat hunting is the combination of data, professional experience, and intuition – the security operations center has a hunch and senses an alert warrants a closer look,” said Bricata CEO John Trauth. “However, there’s a certain urgency to all this – businesses do not have unlimited time, budget and resources to throw at threat hunting. What we’re doing is creating a way for the enterprise to leverage its existing investment in network security to achieve previously impossible levels of organizational maturity and security sophistication.”
Bricata raised an $8 million-dollar growth round of funding in July led by Edison Partners. This round also included a strategic investment and development agreement with In-Q-Tel, the strategic investor that accelerates the development and delivery of cutting-edge technologies to support the mission of the U.S. Intelligence Community. Bricata was named a “vendor to watch” by a reputable technology analyst firm in 2015 and 2016. In addition, the news organization SDxCentral recently described it as one of “10 Security Startups to Watch.”
Bricata network security solutions deliver innovative next-generation intrusion prevention, advanced threat detection and analysis, and network threat hunting to enable large organizations to actively pursue and identify advanced, persistent, and coordinated attacks. A specialized component-based approach to today’s attacks has left organizations with a stack of tools to manage that provide a patchwork of uncorrelated data, leaving penetrable gaps and inconsistent security policies. The Bricata platform provides organizations with process automation, streamlining operations with the most effective, affordable solution for situational awareness and proactive threat defense, reducing complexity, dwell time and time to containment. For more information visit bricata.com.
PR for Bricata
media at bricata-dot-com