sb-eu logo
Story image

NetScout's Arbor Networks cybersecurity play shows fruit

05 Oct 2019

NetScout is a networking and security software vendor with a unique position in an enterprises network.

At the heart of their portfolio is their InfiniStream product, which collects massive amounts of data from throughout an enterprises' networking and security infrastructure.

In 2015 NetScout seriously entered the cybersecurity category with their acquisition of Arbor Networks.

The combined vendor has been busy over the last few years stitching its products together so that it's cybersecurity solutions can uniquely leverage their information and intelligence products.

"There is a renewed interest in the use of network data for security analytics and operations," said Jon Oltsik, Senior Principal Analyst and Fellow, Enterprise Strategy Group (ESG). "NetScout can make network security data affordable and consumable. Its ASI technology, with the addition of threat intelligence feeds, can help organizations detect IOCs and accelerate post forensic workflows. NetScout offers these capabilities while adding value to security infrastructure by integrating into existing ecosystems and workflows through APIs to SIEMs (including Splunk dashboards)."

At the same time, the company has moved to be a software business and woven cloud and multi-cloud technologies throughout its portfolio.

Their most recent move has been the introduction of Arbor Threat Analytics (ATA)

Arbor Threat Analytics is built on the ISNG visibility platform, which has been designed to be deployed anywhere, from on-prem 10-100Gbit links to individual workloads.

From metadata to conversation flows, session records, and ultimately packets, NetScout provides visibility for IT professionals to reduce risk in their increasingly complex environments. With the ability to detect issues behind the firewall and throughout the network, Arbor Threat Analytics allows security analysts to respond to threats quicker and with greater accuracy.

ATA sees the integration of NetScouts Adaptive Services Intelligence (ASI) traffic monitoring technology with their ATLAS Intelligence Feed. Machine learning techniques are also being applied to help sort through the vast amount of information being collected.

"Our commitment to providing the most actionable and high-fidelity information to IT teams has now been extended to the security teams," said Paul Barrett, Enterprise CTO, NetScout. "While the use of packet data has long been a part of security workflows, our ability to convert packet data into actionable metadata speeds the response of security teams. Leveraging our technology, deployment models and expertise, IT can reduce risk through our ability to provide visibility anywhere."

Customer feedback

"Threat Analytics is a great example of how our NetScout portfolio works together to benefit our current and future customers. The feedback from these customers has been exceptional and inspiring since introduction. We have seen wide adoption and many successful deployments and proof of concept and value are underway." said Paul Kraus, VP Engineering Cybersecurity, NetScout

Story image
Video: 10 Minute IT JamsAttivo Networks on threat detection using deception
Attivo Networks is a US-based technology vendor in the cybersecurity space. The company focuses on threat detection and deception.More
Story image
AWS launches fully-managed fraud detection service
Businesses lose billions of dollars to online fraud every year, however businesses respond by investing in cumbersome fraud management solutions that often rely on hand-coded rules and are difficult to keep up to date.More
Story image
WatchGuard releases two new enterprise-grade APs
The AP225W for multi-dwelling unit deployment and the AP327X for harsh outdoor environments.More
Story image
Interview: ThreatQuotient champions threat intelligence through virtual 'situation rooms'
To understand what it involves and some of the collaboration challenges that come with distributing threat intelligence amongst specialised security teams, we spoke to ThreatQuotient APJC regional director Anthony Stitt.More
Story image
Q&A: Barracuda VP on how SD-WAN can aid in public cloud adoption
Techday caught up with Barracuda RVP of public cloud & strategic alliances Chris Hill to discuss why SD-WAN is fast becoming the launch pad into the cloud.More
Story image
Why greater network visibility is needed to reduce the threat posed by IoT in the enterprise
At home and abroad, organisations have joined the rush to embrace Internet of Things (IoT) technology, but a new survey shows they’re only just beginning to wake up to the enormous risk those devices pose, writes ExtraHop A/NZ Regional Sales Manager Glen Maloney.More